Lenovo

Vantage

8 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-6232

  • EPSS 0.03%
  • Veröffentlicht 17.07.2025 19:19:32
  • Zuletzt bearbeitet 22.07.2025 17:05:42

An improper validation vulnerability was reported in Lenovo Vantage that under certain conditions could allow a local attacker to execute code with elevated permissions by modifying specific registry locations.

7.8

CVE-2025-6231

  • EPSS 0.03%
  • Veröffentlicht 17.07.2025 19:19:23
  • Zuletzt bearbeitet 22.07.2025 17:05:25

An improper validation vulnerability was reported in Lenovo Vantage that under certain conditions could allow a local attacker to execute code with elevated permissions by modifying an application configuration file.

5.3

CVE-2025-6230

  • EPSS 0.02%
  • Veröffentlicht 17.07.2025 19:19:12
  • Zuletzt bearbeitet 19.08.2025 16:32:52

A SQL injection vulnerability was reported in Lenovo Vantage that could allow a local attacker to modify the local SQLite database and execute limited SQLite commands.

7.8

CVE-2024-12673

  • EPSS 0.02%
  • Veröffentlicht 12.02.2025 21:15:12
  • Zuletzt bearbeitet 12.02.2025 21:15:12

An improper privilege vulnerability was reported in a BIOS customization feature of Lenovo Vantage on SMB notebook devices which could allow a local attacker to elevate privileges on the system. This vulnerability only affects Vantage installed on t...

7.8

CVE-2023-6043

  • EPSS 0.01%
  • Veröffentlicht 19.01.2024 20:15:12
  • Zuletzt bearbeitet 21.11.2024 08:43:01

A privilege escalation vulnerability was reported in Lenovo Vantage that could allow a local attacker to bypass integrity checks and execute arbitrary code with elevated privileges.

6.8

CVE-2023-6044

  • EPSS 0.04%
  • Veröffentlicht 19.01.2024 20:15:12
  • Zuletzt bearbeitet 21.11.2024 08:43:02

A privilege escalation vulnerability was reported in Lenovo Vantage that could allow a local attacker with physical access to impersonate Lenovo Vantage Service and execute arbitrary code with elevated privileges.

7.8

CVE-2020-8327

  • EPSS 0.1%
  • Veröffentlicht 14.04.2020 21:15:16
  • Zuletzt bearbeitet 21.11.2024 05:38:43

A privilege escalation vulnerability was reported in LenovoBatteryGaugePackage for Lenovo System Interface Foundation bundled in Lenovo Vantage prior to version 10.2003.10.0 that could allow an authenticated user to execute code with elevated privile...

4.4

CVE-2020-8316

  • EPSS 0.09%
  • Veröffentlicht 14.04.2020 21:15:15
  • Zuletzt bearbeitet 21.11.2024 05:38:41

A vulnerability was reported in Lenovo Vantage prior to version 10.2003.10.0 that could allow an authenticated user to read files on the system with elevated privileges.