exploitDog

GHSA-9j2g-7v4v-vp2g

Опубликовано: 12 нояб. 2025

Источник: github

Github: Не прошло ревью

CVSS4: 7

CVSS3: 7.3

Описание

An improper permissions vulnerability was reported in Lenovo App Store that could allow a local authenticated user to execute code with elevated privileges during installation of an application.

An improper permissions vulnerability was reported in Lenovo App Store that could allow a local authenticated user to execute code with elevated privileges during installation of an application.

Ссылки

EPSS

Процентиль: 2%

0.00014

Низкий

7 High

CVSS4

7.3 High

CVSS3

CVE ID

Дефекты

CWE-276

Связанные уязвимости

CVE-2025-8485

CVSS3: 7.3

nvd

3 месяца назад

An improper permissions vulnerability was reported in Lenovo App Store that could allow a local authenticated user to execute code with elevated privileges during installation of an application.

EPSS

Процентиль: 2%

0.00014

Низкий

7 High

CVSS4

7.3 High

CVSS3

CVE ID

Дефекты

CWE-276