cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-10253,https://securityvulnerability.io/vulnerability/CVE-2024-10253,TOCTOU Vulnerability in Lenovo Software Products,"A potential Time-of-Check to Time-of-Use (TOCTOU) vulnerability has been identified in Lenovo's software products, including PC Manager, Lenovo Browser, and Lenovo App Store. This vulnerability could enable a local attacker to exploit the timing issue, potentially resulting in a system crash and disrupting normal operations. Users of these affected Lenovo products should be vigilant and consider applying relevant updates or patches to mitigate the risk.",Lenovo,"Pc Manager,Browser,App Store",4.7,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-14T22:15:00.000Z,125
CVE-2024-10254,https://securityvulnerability.io/vulnerability/CVE-2024-10254,"Buffer Overflow Vulnerability in Lenovo PC Manager, Browser, and App Store","A buffer overflow vulnerability has been identified in Lenovo PC Manager, Lenovo Browser, and Lenovo App Store. This flaw could potentially allow a local attacker to exploit the vulnerability, leading to system instability and crashes. Users are urged to stay informed about updates and patches to mitigate potential security risks associated with these affected products.",Lenovo,"Pc Manager,Browser,App Store",4.7,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-14T22:15:00.000Z,0
CVE-2024-4130,https://securityvulnerability.io/vulnerability/CVE-2024-4130,Lenovo App Store Hijack Vulnerability Allows Local Attacker Execution with Elevated Privileges,"A DLL hijack vulnerability has been identified in Lenovo App Store, potentially enabling local attackers to execute arbitrary code with elevated privileges. This issue poses significant risks to systems where the affected application is installed, allowing unauthorized access and manipulation of system resources. Ensuring the application is updated and following security best practices is essential to mitigate potential exploitation of this vulnerability.",Lenovo,App Store,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-10-11T15:15:41.059Z,0
CVE-2023-6450,https://securityvulnerability.io/vulnerability/CVE-2023-6450,Incorrect Permissions Vulnerability in Lenovo App Store Application,"A vulnerability has been identified in the Lenovo App Store application where improper permission settings may allow unauthorized users to access system resources. This could potentially lead to resource exhaustion, impacting the availability of services and resulting in denial of service conditions. Organizations using the Lenovo App Store should evaluate their installations and implement necessary mitigations to safeguard against potential exploitation.",Lenovo,Lenovo App Store Application,5.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-01-19T20:09:59.870Z,0
CVE-2022-3611,https://securityvulnerability.io/vulnerability/CVE-2022-3611,Information Disclosure Vulnerability in Lenovo App Store,"An information disclosure vulnerability has been identified in the Lenovo App Store. This flaw could allow specific applications to gain unauthorized access to sensitive user data utilized by other unrelated applications, potentially compromising the privacy and security of users. It highlights the need for robust security measures to prevent data leaks and ensure that applications operate within their intended security boundaries.",Lenovo,App Store,7.6,HIGH,0.0011399999493733048,false,,false,false,false,,,false,false,,2023-10-27T19:05:01.038Z,0