CNNVD-202601-2355 Information

CNNVD ID

CNNVD-202601-2355

Related CVE

CVE-2025-13154

• CNNVD Published: 2026-01-14

Description (Chinese)

Lenovo Vantage是中国联想（Lenovo）公司的一款计算机管理应用程序。该程序支持驱动程序更新、设备状态诊断和计算机配置等功能。 Lenovo Vantage存在安全漏洞，该漏洞源于链接跟随不当，可能导致经过身份验证的本地用户以提升的权限执行任意文件删除。

Description (English)

Lenovo Vantage is a computer management application for Lenovo. The program supports such functions as driver update, equipment status diagnosis and computer configuration. There is a security loophole in Lenovo Vantage, which stems from the inappropriate follow-up of links, which may lead to the removal of any document by a locally certified user with enhanced permission.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

联想

Published

2026-01-14

Last Modified

2026-02-24

References

https://support.lenovo.com/us/en/product_security/LEN-208293 https://access.redhat.com/security/cve/cve-2025-13154

Patch

https://support.lenovo.com/us/en/product_security/LEN-208293