Vulnerabilities > CVE-2019-6175 - Unspecified vulnerability in Lenovo System Update

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

lenovo

NVD

Published: 2019-09-26

Updated: 2024-11-21

Summary

A denial of service vulnerability was reported in Lenovo System Update versions prior to 5.07.0088 that could allow configuration files to be written to non-standard locations.

Vulnerable Configurations

Part	Description	Count
Application	Lenovo Lenovo System Update - Lenovo System Update 5.06.0027 Lenovo System Update 5.06.0034 Lenovo System Update 5.06.0043 Lenovo System Update 5.07.0008 Lenovo System Update 5.07.0013 Lenovo System Update 5.07.0019 Lenovo System Update 5.07.0072 Lenovo System Update 5.07.0084	9

References

https://support.lenovo.com/solutions/LEN-28093
https://support.lenovo.com/solutions/LEN-28093