CVE-2024-5474
CVSS V2 None
CVSS V3 None
Description
A potential information disclosure vulnerability was reported in Lenovo's packaging of Dolby Vision Provisioning software prior to version 2.0.0.2 that could allow a local attacker to read files on the system with elevated privileges during installation of the package. Previously installed versions are not affected by this issue.
Overview
- CVE ID
- CVE-2024-5474
- Assigner
- lenovo
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-10-11T15:15:12.643Z
- Last Modified Date
- 2024-10-11T19:07:47.060Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://support.lenovo.com/us/en/product_security/LEN-158394 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-5474 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5474 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-10-12 13:19:42 | Added to TrackCVE |