Lenovo System Update Privilege Escalation Vulnerability

Lenovo System Update Privilege Escalation Vulnerability

CVE-2015-8109 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

Lenovo System Update (formerly ThinkVantage System Update) before 5.07.0019 allows local users to gain privileges by making a prediction of tvsu_tmp_xxxxxXXXXX account credentials that requires knowledge of the time that this account was created, aka a "temporary administrator account vulnerability."

Learn more about our User Device Pen Test.