Privilege Escalation Vulnerability in Lenovo Installation Packages

Privilege Escalation Vulnerability in Lenovo Installation Packages

CVE-2019-6173 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

A DLL search path vulnerability could allow privilege escalation in some Lenovo installation packages, prior to version 1.2.9.3, during installation if an attacker already has administrative privileges.

Learn more about our Web Application Penetration Testing UK.