Lenovo Pcmanager vulnerabilities

CVE-2025-10581 [HIGH] CWE-427 CVE-2025-10581: A potential DLL hijacking vulnerability was discovered in the Lenovo PC Manager during an internal s A potential DLL hijacking vulnerability was discovered in the Lenovo PC Manager during an internal security assessment that could allow a local authenticated user to execute code with elevated privileges.

CVE-2025-8486 [HIGH] CWE-250 CVE-2025-8486: A potential vulnerability was reported in PC Manager that could allow a local authenticated user to A potential vulnerability was reported in PC Manager that could allow a local authenticated user to execute code with elevated privileges.

CVE-2025-8098 [HIGH] CWE-276 CVE-2025-8098: An improper permission vulnerability was reported in Lenovo PC Manager that could allow a local atta An improper permission vulnerability was reported in Lenovo PC Manager that could allow a local attacker to escalate privileges.

CVE-2025-2501 [HIGH] CWE-426 CVE-2025-2501: An untrusted search path vulnerability was reported in Lenovo PC Manager that could allow a local at An untrusted search path vulnerability was reported in Lenovo PC Manager that could allow a local attacker to elevate privileges.

CVE-2025-2502 [HIGH] CWE-276 CVE-2025-2502: An improper default permissions vulnerability was reported in Lenovo PC Manager that could allow a l An improper default permissions vulnerability was reported in Lenovo PC Manager that could allow a local attacker to elevate privileges.

CVE-2025-2503 [MEDIUM] CWE-732 CVE-2025-2503: An improper permission handling vulnerability was reported in Lenovo PC Manager that could allow a l An improper permission handling vulnerability was reported in Lenovo PC Manager that could allow a local attacker to perform arbitrary file deletions as an elevated user.

CVE-2019-6197 [HIGH] CWE-287 CVE-2019-6197: A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a l A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a local attacker to escalate privileges.

CVE-2019-6198 [HIGH] CWE-287 CVE-2019-6198: A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a l A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a local attacker to escalate privileges.

CVE-2017-3772 [MEDIUM] CWE-20 CVE-2017-3772: A vulnerability was reported in Lenovo PC Manager versions prior to 2.6.40.3154 that could allow an A vulnerability was reported in Lenovo PC Manager versions prior to 2.6.40.3154 that could allow an attacker to cause a system reboot.

CVE-2022-1513 [HIGH] CWE-78 CVE-2022-1513: A potential vulnerability was reported in Lenovo PCManager prior to version 5.0.10.4191 that may all A potential vulnerability was reported in Lenovo PCManager prior to version 5.0.10.4191 that may allow code execution when visiting a specially crafted website.

CVE-2022-0192 [HIGH] CWE-427 CVE-2022-0192: A DLL search path vulnerability was reported in Lenovo PCManager prior to version 4.0.40.2175 that c A DLL search path vulnerability was reported in Lenovo PCManager prior to version 4.0.40.2175 that could allow privilege escalation.

CVE-2021-3721 [MEDIUM] CWE-787 CVE-2021-3721: A denial of service vulnerability was reported in Lenovo PCManager prior to version 4.0.20.10282 tha A denial of service vulnerability was reported in Lenovo PCManager prior to version 4.0.20.10282 that could allow an attacker with local access to trigger a blue screen error.

CVE-2021-3722 [MEDIUM] CWE-276 CVE-2021-3722: A denial of service vulnerability was reported in Lenovo PCManager prior to version 4.0.40.2175 that A denial of service vulnerability was reported in Lenovo PCManager prior to version 4.0.40.2175 that could allow configuration files to be written to non-standard locations during installation.

CVE-2021-3550 [HIGH] CWE-427 CVE-2021-3550: A DLL search path vulnerability was reported in Lenovo PCManager, prior to version 3.0.500.5102, tha A DLL search path vulnerability was reported in Lenovo PCManager, prior to version 3.0.500.5102, that could allow privilege escalation.

CVE-2021-3464 [HIGH] CWE-427 CVE-2021-3464: A DLL search path vulnerability was reported in Lenovo PCManager, prior to version 3.0.400.3252, tha A DLL search path vulnerability was reported in Lenovo PCManager, prior to version 3.0.400.3252, that could allow privilege escalation.

CVE-2021-3451 [MEDIUM] CWE-276 CVE-2021-3451: A denial of service vulnerability was reported in Lenovo PCManager, prior to version 3.0.400.3252, t A denial of service vulnerability was reported in Lenovo PCManager, prior to version 3.0.400.3252, that could allow configuration files to be written to non-standard locations.

CVE-2020-8357 [MEDIUM] CWE-276 CVE-2020-8357: A denial of service vulnerability was reported in Lenovo PCManager, prior to version 3.0.200.2042, t A denial of service vulnerability was reported in Lenovo PCManager, prior to version 3.0.200.2042, that could allow configuration files to be written to non-standard locations.

CVE-2020-8351 [HIGH] CWE-16 CVE-2020-8351: A privilege escalation vulnerability was reported in Lenovo PCManager prior to version 3.0.50.9162 t A privilege escalation vulnerability was reported in Lenovo PCManager prior to version 3.0.50.9162 that could allow an authenticated user to execute code with elevated privileges.