Lenovo System_update
5 CVEs affecting Lenovo System_update. Latest disclosed: 2022-04-22. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2015-6971 | High | 7.8 | 2017-10-03 | Lenovo System Update (formerly ThinkVantage System Update) before 5.07.0013 allows local users to submit commands to the System Update service (SUService.exe)… |
CVE-2022-0354 | High | 7.3 | 2022-04-22 | A vulnerability was reported in Lenovo System Update that could allow a local user with interactive system access the ability to execute code with elevated pri… |
CVE-2015-2234 | | 2015-05-12 | Race condition in Lenovo System Update (formerly ThinkVantage System Update) before 5.06.0034 uses world-writable permissions for the update files directory, w… | |
CVE-2015-2233 | | 2015-05-12 | Lenovo System Update (formerly ThinkVantage System Update) before 5.06.0034 does not properly validate CA chains during signature validation, which allows man-… | |
CVE-2015-2219 | | 2015-05-12 | Lenovo System Update (formerly ThinkVantage System Update) before 5.06.0034 uses predictable security tokens, which allows local users to gain privileges by se… |