exploitDog

GHSA-6cmg-j379-64rm

Опубликовано: 15 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS4: 6.8

CVSS3: 5.5

Описание

An improper link following vulnerability was reported in the SmartPerformanceAddin for Lenovo Vantage that could allow an authenticated local user to perform an arbitrary file deletion with elevated privileges.

An improper link following vulnerability was reported in the SmartPerformanceAddin for Lenovo Vantage that could allow an authenticated local user to perform an arbitrary file deletion with elevated privileges.

Ссылки

EPSS

Процентиль: 7%

0.00027

Низкий

6.8 Medium

CVSS4

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-59

Связанные уязвимости

CVE-2025-13154

CVSS3: 5.5

nvd

24 дня назад

An improper link following vulnerability was reported in the SmartPerformanceAddin for Lenovo Vantage that could allow an authenticated local user to perform an arbitrary file deletion with elevated privileges.

EPSS

Процентиль: 7%

0.00027

Низкий

6.8 Medium

CVSS4

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-59