CVE-2025-2501
published 2025-05-30CVE-2025-2501: An untrusted search path vulnerability was reported in Lenovo PC Manager that could allow a local attacker to elevate privileges.
high8.5CVSS 4.0
AVLACLATNPRLUINVCHVIHVAHSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
An untrusted search path vulnerability was reported in Lenovo PC Manager that could allow a local attacker to elevate privileges.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| lenovo | pc_manager | < 5.1.110.5082 | 5.1.110.5082 |
| lenovo | pcmanager | < 5.1.110.5082 | 5.1.110.5082 |
| msrc | azure_stack_hub | — | — |
| msrc | azure_stack_hub_2406 | — | — |
| msrc | azure_stack_hub_2408 | — | — |
| msrc | azure_stack_hub_2501 | — | — |