Lenovo

System Update

15 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2023-4632

  • EPSS 0.07%
  • Published 08.11.2023 22:15:11
  • Last modified 21.11.2024 08:35:34

An uncontrolled search path vulnerability was reported in Lenovo System Update that could allow an attacker with local access to execute code with elevated privileges.

7

CVE-2022-4568

  • EPSS 0.04%
  • Published 01.05.2023 15:15:09
  • Last modified 30.01.2025 16:15:28

A directory permissions management vulnerability in Lenovo System Update may allow elevation of privileges.

7.8

CVE-2022-0354

Exploit
  • EPSS 0.05%
  • Published 22.04.2022 21:15:10
  • Last modified 21.11.2024 06:38:26

A vulnerability was reported in Lenovo System Update that could allow a local user with interactive system access the ability to execute code with elevated privileges only during the installation of a System Update package released before 2022-02-25 ...

7

CVE-2020-8342

  • EPSS 0.03%
  • Published 15.09.2020 15:15:14
  • Last modified 21.11.2024 05:38:44

A race condition vulnerability was reported in Lenovo System Update prior to version 5.07.0106 that could allow escalation of privilege.

7.8

CVE-2015-7333

  • EPSS 0.04%
  • Published 27.03.2020 15:15:11
  • Last modified 21.11.2024 02:36:36

MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A local privilege escalation vulnerability was reported (fixed and publicly disclosed in 2015) in Lenovo System Update version 5.07.0008 and prior where the SUService...

7.8

CVE-2015-7334

  • EPSS 0.04%
  • Published 27.03.2020 15:15:11
  • Last modified 21.11.2024 02:36:36

MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A local privilege escalation vulnerability was reported (fixed and publicly disclosed in 2015) in Lenovo System Update version 5.07.0008 and prior where the SUService...

7

CVE-2015-7335

  • EPSS 0.04%
  • Published 27.03.2020 15:15:11
  • Last modified 21.11.2024 02:36:36

MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A race condition was reported (fixed and publicly disclosed in 2015) in Lenovo System Update version 5.07.0008 and prior that could allow a user to execute arbitrary ...

7.5

CVE-2015-7336

  • EPSS 0.11%
  • Published 27.03.2020 15:15:11
  • Last modified 21.11.2024 02:36:36

MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A vulnerability was reported (fixed and publicly disclosed in 2015) in Lenovo System Update version 5.07.0008 and prior that could allow the signature check of an upd...

7.8

CVE-2019-6175

  • EPSS 0.56%
  • Published 26.09.2019 16:15:12
  • Last modified 21.11.2024 04:46:06

A denial of service vulnerability was reported in Lenovo System Update versions prior to 5.07.0088 that could allow configuration files to be written to non-standard locations.

7.5

CVE-2019-6163

  • EPSS 0.27%
  • Published 26.06.2019 14:15:10
  • Last modified 21.11.2024 04:46:03

A denial of service vulnerability was reported in Lenovo System Update before version 5.07.0084 that could allow service log files to be written to non-standard locations.