CVE-2025-8486Execution with Unnecessary Privileges in Lenovo PC Manager

CWE-250Execution with Unnecessary Privileges3 documents3 sources
Severity
8.5HIGHNVD
EPSS
0.0%
top 95.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Lenovo PC ManagerLenovo Pcmanager
Timeline
PublishedOct 15

Description

A potential vulnerability was reported in PC Manager that could allow a local authenticated user to execute code with elevated privileges.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

NVDlenovo/pcmanager< 5.1.140.9262
CVEListV5lenovo/pc_manager< 5.1.140.9262

🔴Vulnerability Details

2
CVEList
CVE-2025-8486: A potential vulnerability was reported in PC Manager that could allow a local authenticated user to execute code with elevated privileges2025-10-15
GHSA
GHSA-7p7c-646p-56rg: A potential vulnerability was reported in PC Manager that could allow a local authenticated user to execute code with elevated privileges2025-10-15
CVE-2025-8486 — Execution with Unnecessary Privileges | cvebase