Lucene search
K

384 matches found

Cvelist
Cvelist
added 2026/03/11 8:20 p.m.27 views

CVE-2026-0520

A potential vulnerability was reported in the Lenovo FileZ Android application that, under certain conditions, could allow a local authenticated user to retrieve some sensitive data stored in a log file...

2.8CVSS0.00093EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.5 views

PT-2026-24835

CVE-2026-2640 During an internal security assessment, a potential vulnerability was discovered in Lenovo PC Manager that could allow a local authenticated user to terminate privilege… https://t.co/aCB7Ljbuyx...

6.8CVSS5.8AI score0.00114EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.3 views

PT-2026-24829

CVE-2026-0520 A potential vulnerability was reported in the Lenovo FileZ Android application that, under certain conditions, could allow a local authenticated user to retrieve some s… https://t.co/GakGcTOAc1...

2.8CVSS5.8AI score0.00093EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.6 views

PT-2026-24676

An input validation vulnerability was reported in the DeviceSettingsSystemAddin used in Lenovo Vantage and Lenovo Baiying that could allow a local authenticated user to modify arbitrary registry keys with elevated privileges...

7.1CVSS5.9AI score0.00148EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.6 views

PT-2026-24832

A potential buffer overflow vulnerability was reported in the Lenovo Virtual Bus driver used in Smart Connect that could allow a local authenticated user to corrupt memory and cause a Windows blue screen error...

6.9CVSS6.1AI score0.00095EPSS
Exploits0References3
OSV
OSV
added 2026/03/03 2:3 p.m.3 views

USN-8068-1 intel-microcode vulnerability

Sergiu Ghetie discovered that some Intel® processors did not properly handle values in the microcode flow. A local authenticated user could potentially use this issue to escalate their privileges...

3.9CVSS5.8AI score0.00133EPSS
Exploits0References2
CVE
CVE
added 2026/02/11 12:18 p.m.13 views

CVE-2025-54150

CVE-2025-54150 affects QNAP Qsync Central. It is an uncontrolled resource consumption vulnerability that allows a local attacker with a user account to trigger a denial-of-service (DoS). The issue has been fixed in Qsync Central 5.0.0.4 (2026-01-20) and later. CVSS metrics are provided, but explo...

7.1CVSS5.5AI score0.00242EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.8 views

PT-2026-7289

Name of the Vulnerable Software and Affected Versions VMware ESXi versions prior to 2.2.2.0 ESXi 8.0 VMware ESXi versions prior to 2.2.3.0 ESXi 9.0 Description An improper initialization issue exists in some ESXi kernel mode driver for the Intel Ethernet 800-Series. This may allow an information...

3.3CVSS5.3AI score0.00108EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.6 views

PT-2026-5756

Brocade Fabric OS before 9.2.1 has a vulnerability that could allow a local authenticated attacker to reveal command line passwords using commands that may expose higher privilege sensitive information by a lower privileged user...

6CVSS5.4AI score0.00142EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.11 views

PT-2026-5680

A medium-severity vulnerability has been identified in BeyondTrust Privilege Management for Windows versions =25.7. Under certain conditions, a local authenticated user with elevated privileges may be able to bypass the product’s anti-tamper protections, which could allow access to protected...

6.8CVSS5.2AI score0.0012EPSS
Exploits0References3
OSV
OSV
added 2026/01/15 9:16 p.m.7 views

CVE-2025-59959

An Untrusted Pointer Dereference vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a local, authenticated attacker with low privileges to cause a Denial-of-Service DoS. When the command 'show route detail' is executed, and at least one of th...

5.5CVSS5.8AI score0.00129EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/15 12:31 a.m.6 views

EUVD-2025-206288

A potential vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to gain access to sensitive device information...

5.7CVSS6.1AI score0.00092EPSS
Exploits0References2
NVD
NVD
added 2026/01/14 11:15 p.m.3 views

CVE-2025-13454

A potential vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to gain access to sensitive device information...

6.8CVSS0.00092EPSS
Exploits0References1
NVD
NVD
added 2026/01/14 11:15 p.m.6 views

CVE-2025-13455

A vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to bypass ThinkPlus device authentication and enroll an untrusted fingerprint...

7.8CVSS0.00116EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/14 10:18 p.m.19 views

CVE-2025-13455

A vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to bypass ThinkPlus device authentication and enroll an untrusted fingerprint...

7.8CVSS0.00116EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/14 10:18 p.m.5 views

CVE-2025-13455

A vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to bypass ThinkPlus device authentication and enroll an untrusted fingerprint...

7.8CVSS6.3AI score0.00116EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/14 10:18 p.m.5 views

CVE-2025-13455

A vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to bypass ThinkPlus device authentication and enroll an untrusted fingerprint...

7.8CVSS5.5AI score0.00116EPSS
Exploits0References2
CVE
CVE
added 2026/01/14 10:18 p.m.10 views

CVE-2025-13455

CVE-2025-13455 describes a vulnerability in ThinkPlus configuration software that could allow a local authenticated user to bypass ThinkPlus device authentication and enroll an untrusted fingerprint. Affected software: ThinkPlus configuration software. The root cause details are not specified in ...

7.8CVSS6.3AI score0.00116EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/14 10:18 p.m.4 views

CVE-2025-13454

A potential vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to gain access to sensitive device information...

6.8CVSS6.2AI score0.00092EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/14 10:18 p.m.22 views

CVE-2025-13454

A potential vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to gain access to sensitive device information...

6.8CVSS0.00092EPSS
Exploits0References1
Rows per page
Query Builder