Race Condition Vulnerability in Lenovo System Interface Foundation's IMController

Race Condition Vulnerability in Lenovo System Interface Foundation's IMController

CVE-2021-3922 · HIGH Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

A race condition vulnerability was reported in IMController, a software component of Lenovo System Interface Foundation, prior to version 1.1.20.3 that could allow a local attacker to connect and interact with the IMController child process' named pipe.

Learn more about our Web Application Penetration Testing UK.