Buffer Overflow Vulnerability in Lenovo Desktop ReFlash Module Allows Arbitrary Code Execution

Buffer Overflow Vulnerability in Lenovo Desktop ReFlash Module Allows Arbitrary Code Execution

CVE-2023-43577 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

A buffer overflow was reported in the ReFlash module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.

Learn more about our Cis Benchmark Audit For Desktop Software.