Lenovo - Service Framework CVE

Filtered by vendor Lenovo Subscribe

Filtered by product Service Framework

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2017-3758	1 Lenovo	1 Service Framework	2019-10-03	7.5 HIGH	9.8 CRITICAL
Improper access controls on several Android components in the Lenovo Service Framework application can be exploited to enable remote code execution.
CVE-2017-3761	1 Lenovo	1 Service Framework	2019-10-03	10.0 HIGH	9.8 CRITICAL
The Lenovo Service Framework Android application executes some system commands without proper sanitization of external input. In certain cases, this could lead to command injection which, in turn, could lead to remote code execution.

Vulnerabilities (CVE)