VYPR

ThinkVantage System Update

by Lenovo

CVEs (2)

  • CVE-2015-6971HigOct 3, 2017
    risk 0.51cvss 7.8epss 0.00

    Lenovo System Update (formerly ThinkVantage System Update) before 5.07.0013 allows local users to submit commands to the System Update service (SUService.exe) and gain privileges by launching signed Lenovo executables.

  • CVE-2015-8109HigApr 24, 2017
    risk 0.46cvss 7.0epss 0.00

    Lenovo System Update (formerly ThinkVantage System Update) before 5.07.0019 allows local users to gain privileges by making a prediction of tvsu_tmp_xxxxxXXXXX account credentials that requires knowledge of the time that this account was created, aka a "temporary administrator…