CVE-2018-9063 is a vulnerability in Lenovo System Update
Published on May 4, 2018

MapDrv (C:\Program Files\Lenovo\System Update\mapdrv.exe) In Lenovo System Update versions earlier than 5.07.0072 contains a local vulnerability where an attacker entering very large user ID or password can overrun the program's buffer, causing undefined behaviors, such as execution of arbitrary code. No additional privilege is granted to the attacker beyond what is already possessed to run MapDrv.

NVD

Products Associated with CVE-2018-9063

Want to know whenever a new CVE is published for Lenovo System Update? stack.watch will email you.

Lenovo System Update

Affected Versions

Lenovo Group Ltd. Lenovo System Update Version Earlier than 5.07.0072 is affected by CVE-2018-9063

Exploit Probability

EPSS

0.09%

Percentile

25.62%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-9063 is a vulnerability in Lenovo System UpdatePublished on May 4, 2018

Products Associated with CVE-2018-9063

Affected Versions

Exploit Probability

CVE-2018-9063 is a vulnerability in Lenovo System Update
Published on May 4, 2018