Vulnerabilities > Lenovo > Solution Center > High

DATE CVE VULNERABILITY TITLE RISK
2020-03-27 CVE-2015-8536 Cross-Site Request Forgery (CSRF) vulnerability in Lenovo Solution Center 3.3.0001/3.3.002
MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA.
network
low complexity
lenovo CWE-352
8.8
8.8
2020-03-27 CVE-2015-8535 Path Traversal vulnerability in Lenovo Solution Center 3.3.0001/3.3.002
MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA.
local
low complexity
lenovo CWE-22
7.8
7.8
2020-03-27 CVE-2015-8534 Improper Privilege Management vulnerability in Lenovo Solution Center 3.3.0001/3.3.002
MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA.
local
low complexity
lenovo CWE-269
7.8
7.8
2017-05-23 CVE-2016-1876 Permissions, Privileges, and Access Controls vulnerability in Lenovo Solution Center 3.3.0001
The backend service process in Lenovo Solution Center (aka LSC) before 3.3.0002 allows local users to gain SYSTEM privileges via unspecified vectors.
local
low complexity
lenovo CWE-264
7.8
7.8
2016-06-30 CVE-2016-5249 Permissions, Privileges, and Access Controls vulnerability in Lenovo Solution Center 3.3.0001/3.3.002
Lenovo Solution Center (LSC) before 3.3.003 allows local users to execute arbitrary code with LocalSystem privileges via vectors involving the LSC.Services.SystemService StartProxy command with a named pipe created in advance and crafted .NET assembly.
local
low complexity
lenovo CWE-264
7.8
7.8