VYPR

Vantage SystemUpdate Plugin

by Lenovo

CVEs (2)

  • CVE-2022-3701Oct 27, 2023
    risk 0.00cvss epss 0.00

    A privilege elevation vulnerability was reported in the Lenovo Vantage SystemUpdate plugin version 2.0.0.212 and earlier that could allow a local attacker to execute arbitrary code with elevated privileges.

  • CVE-2022-3700Oct 27, 2023
    risk 0.00cvss epss 0.00

    A Time of Check Time of Use (TOCTOU) vulnerability was reported in the Lenovo Vantage SystemUpdate Plugin version 2.0.0.212 and earlier that could allow a local attacker to delete arbitrary files.