{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-30T14:01:08.205","vulnerabilities":[{"cve":{"id":"CVE-2024-5474","sourceIdentifier":"psirt@lenovo.com","published":"2024-10-11T16:15:14.440","lastModified":"2024-11-15T17:00:35.697","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A potential information disclosure vulnerability was reported in Lenovo's packaging of Dolby Vision Provisioning software prior to version 2.0.0.2 that could allow a local attacker to read files on the system with elevated privileges during installation of the package. Previously installed versions are not affected by this issue."},{"lang":"es","value":"Se informó de una posible vulnerabilidad de divulgación de información en el paquete de software Dolby Vision Provisioning de Lenovo anterior a la versión 2.0.0.2 que podría permitir que un atacante local lea archivos en el sistema con privilegios elevados durante la instalación del paquete. Las versiones instaladas anteriormente no se ven afectadas por este problema."}],"metrics":{"cvssMetricV31":[{"source":"psirt@lenovo.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@lenovo.com","type":"Secondary","description":[{"lang":"en","value":"CWE-276"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-276"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:lenovo:dolby_vision_provisioning:*:*:*:*:*:*:*:*","versionEndExcluding":"2.0.0.2","matchCriteriaId":"0A189EC9-ED49-4291-95E9-2F5BE2CB6595"}]}]}],"references":[{"url":"https://support.lenovo.com/us/en/product_security/LEN-158394","source":"psirt@lenovo.com","tags":["Vendor Advisory"]}]}}]}