CVE-2022-0354
published 2022-04-22CVE-2022-0354: A vulnerability was reported in Lenovo System Update that could allow a local user with interactive system access the ability to execute code with elevated…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
A vulnerability was reported in Lenovo System Update that could allow a local user with interactive system access the ability to execute code with elevated privileges only during the installation of a System Update package released before 2022-02-25 that displays a command prompt window.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| lenovo | system_update | < 2022-02-25 | 2022-02-25 |
| lenovo | system_update | — | — |