High severity7.8NVD Advisory· Published Oct 3, 2017· Updated Jun 17, 2026
CVE-2015-6971
CVE-2015-6971
Description
Lenovo System Update (formerly ThinkVantage System Update) before 5.07.0013 allows local users to submit commands to the System Update service (SUService.exe) and gain privileges by launching signed Lenovo executables.
Affected products
3cpe:2.3:a:lenovo:system_update:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:lenovo:system_update:*:*:*:*:*:*:*:*range: <=5.06.0034
- (no CPE)range: <5.07.0013
- Range: <5.07.0013
Patches
Vulnerability mechanics
References
2- www.trustwave.com/Resources/Security-Advisories/Advisories/TWSL2015-018/nvdExploitThird Party Advisory
- support.lenovo.com/us/en/product_security/lsu_privilegenvdVendor Advisory
News mentions
0No linked articles in our index yet.