Lucene search
K

384 matches found

CVE
CVE
added 2026/04/15 12:28 p.m.15 views

CVE-2026-4135

CVE-2026-4135 concerns Lenovo Software Fix. The description indicates that during installation, a local authenticated user could perform an arbitrary file write with elevated privileges, potentially impacting integrity and availability. Affected component is Lenovo Software Fix (no version detail...

6.6CVSS5.9AI score0.00116EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/15 12:28 p.m.3 views

CVE-2026-4135

During an internal security assessment, a potential vulnerability was discovered in Lenovo Software Fix, that during installation could allow a local authenticated user to perform an arbitrary file write with elevated privileges...

6.6CVSS5.9AI score0.00116EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/15 12:28 p.m.28 views

CVE-2026-4134

During an internal security assessment, a potential vulnerability was discovered in Lenovo Software Fix, that during installation could allow a local authenticated user to execute code with elevated privileges...

7.3CVSS0.00114EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/15 12:27 p.m.5 views

CVE-2026-1636

A potential DLL hijacking vulnerability was reported in Lenovo Service Bridge that, under certain conditions, could allow a local authenticated user to execute code with elevated privileges...

6.7CVSS5.9AI score0.00126EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/15 12:27 p.m.5 views

CVE-2026-1636

A potential DLL hijacking vulnerability was reported in Lenovo Service Bridge that, under certain conditions, could allow a local authenticated user to execute code with elevated privileges...

6.7CVSS5.9AI score0.00126EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/15 12:27 p.m.6 views

CVE-2026-0827

During an internal security assessment, a potential vulnerability was discovered in Lenovo Diagnostics and the HardwareScanAddin used in Lenovo Vantage that, during installation or when using hardware scan, could allow a local authenticated user to perform an arbitrary file write with elevated...

7.1CVSS5.9AI score0.002EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/15 12:27 p.m.36 views

CVE-2026-0827

During an internal security assessment, a potential vulnerability was discovered in Lenovo Diagnostics and the HardwareScanAddin used in Lenovo Vantage that, during installation or when using hardware scan, could allow a local authenticated user to perform an arbitrary file write with elevated...

7.1CVSS0.002EPSS
Exploits0References1
CVE
CVE
added 2026/04/15 12:27 p.m.16 views

CVE-2026-0827

CVE-2026-0827 concerns Lenovo Diagnostics and the HardwareScanAddin in Lenovo Vantage. The issue, discovered during internal testing, could allow a local authenticated user to perform arbitrary file writes with elevated privileges during installation or while running a hardware scan. The availabl...

7.1CVSS5.9AI score0.002EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/15 12:0 a.m.8 views

PT-2026-33060

During an internal security assessment, a potential vulnerability was discovered in Lenovo Software Fix, that during installation could allow a local authenticated user to perform an arbitrary file write with elevated privileges...

6.6CVSS5.9AI score0.00116EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/15 12:0 a.m.11 views

PT-2026-33061

During an internal security assessment, a potential vulnerability was discovered in Lenovo Software Fix that could allow a local authenticated user to perform arbitrary code execution with elevated privileges...

8.5CVSS6.3AI score0.00196EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/15 12:0 a.m.6 views

PT-2026-33059

During an internal security assessment, a potential vulnerability was discovered in Lenovo Software Fix, that during installation could allow a local authenticated user to execute code with elevated privileges...

7.3CVSS5.9AI score0.00114EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/15 12:0 a.m.10 views

PT-2026-33057

Name of the Vulnerable Software and Affected Versions Lenovo Service Bridge affected versions not specified Description A DLL hijacking issue exists where a local authenticated user could execute code with elevated privileges under certain conditions. DLL hijacking is a technique where an...

6.7CVSS5.9AI score0.00126EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/15 12:0 a.m.8 views

PT-2026-33056

Name of the Vulnerable Software and Affected Versions Lenovo Diagnostics affected versions not specified Lenovo Vantage HardwareScanAddin affected versions not specified Description An issue exists in Lenovo Diagnostics and the HardwareScanAddin used in Lenovo Vantage. During installation or whil...

7.1CVSS5.9AI score0.002EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/26 3:10 p.m.3 views

CVE-2026-1653

A potential divide by zero vulnerability was reported in the Lenovo Virtual Bus driver used in Smart Connect that could allow a local authenticated user to cause a Windows blue screen error...

6.8CVSS5.8AI score0.00093EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:10 p.m.4 views

CVE-2026-1716

An input validation vulnerability was reported in the DeviceSettingsSystemAddin used in Lenovo Vantage and Lenovo Baiying that could allow a local authenticated user to delete arbitrary registry keys with elevated privileges...

7.1CVSS5.9AI score0.00148EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:9 p.m.3 views

CVE-2026-1652

A potential buffer overflow vulnerability was reported in the Lenovo Virtual Bus driver used in Smart Connect that could allow a local authenticated user to corrupt memory and cause a Windows blue screen error...

6.9CVSS6AI score0.00095EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:8 p.m.3 views

CVE-2026-2640

During an internal security assessment, a potential vulnerability was discovered in Lenovo PC Manager that could allow a local authenticated user to terminate privileged processes...

6.8CVSS5.8AI score0.00114EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/11 9:31 p.m.4 views

EUVD-2026-11353

A potential buffer overflow vulnerability was reported in the Lenovo Virtual Bus driver used in Smart Connect that could allow a local authenticated user to corrupt memory and cause a Windows blue screen error...

6.9CVSS6.1AI score0.00095EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/11 9:31 p.m.6 views

EUVD-2026-11361

An input validation vulnerability was reported in the LenovoProductivitySystemAddin used in Lenovo Vantage and Lenovo Baiying that could allow a local authenticated user to terminate arbitrary processes with elevated privileges...

6.8CVSS5.9AI score0.00144EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/11 9:31 p.m.4 views

EUVD-2026-11357

An input validation vulnerability was reported in the DeviceSettingsSystemAddin used in Lenovo Vantage and Lenovo Baiying that could allow a local authenticated user to modify arbitrary registry keys with elevated privileges...

7.1CVSS5.9AI score0.00148EPSS
Exploits0References3
Rows per page
Query Builder