Lenovo Baiying vulnerabilities

CVE-2026-1716 [MEDIUM] CWE-88 CVE-2026-1716: An input validation vulnerability was reported in the DeviceSettingsSystemAddin used in Lenovo Vanta An input validation vulnerability was reported in the DeviceSettingsSystemAddin used in Lenovo Vantage and Lenovo Baiying that could allow a local authenticated user to delete arbitrary registry keys with elevated privileges.

CVE-2026-1717 [MEDIUM] CWE-88 CVE-2026-1717: An input validation vulnerability was reported in the LenovoProductivitySystemAddin used in Lenovo V An input validation vulnerability was reported in the LenovoProductivitySystemAddin used in Lenovo Vantage and Lenovo Baiying that could allow a local authenticated user to terminate arbitrary processes with elevated privileges.

CVE-2026-1715 [MEDIUM] CWE-88 CVE-2026-1715: An input validation vulnerability was reported in the DeviceSettingsSystemAddin used in Lenovo Vanta An input validation vulnerability was reported in the DeviceSettingsSystemAddin used in Lenovo Vantage and Lenovo Baiying that could allow a local authenticated user to modify arbitrary registry keys with elevated privileges.

CVE-2024-33579 [HIGH] CWE-427 CVE-2024-33579: A DLL hijack vulnerability was reported in Lenovo Baiying that could allow a local attacker to execu A DLL hijack vulnerability was reported in Lenovo Baiying that could allow a local attacker to execute code with elevated privileges.

CVE-2022-48186 [HIGH] CWE-295 CVE-2022-48186: A certificate validation vulnerability exists in the Baiying Android application which could lead to A certificate validation vulnerability exists in the Baiying Android application which could lead to information disclosure.