VYPR

PC Manager

by Lenovo

CVEs (25)

  • CVE-2025-2502HigMay 30, 2025
    risk 0.51cvss 7.8epss 0.00

    An improper default permissions vulnerability was reported in Lenovo PC Manager that could allow a local attacker to elevate privileges.

  • CVE-2025-2501HigMay 30, 2025
    risk 0.51cvss 7.8epss 0.00

    An untrusted search path vulnerability was reported in Lenovo PC Manager that could allow a local attacker to elevate privileges.

  • CVE-2019-6198HigJul 31, 2024
    risk 0.51cvss 7.8epss 0.00

    A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a local attacker to escalate privileges.

  • CVE-2019-6197HigJul 31, 2024
    risk 0.51cvss 7.8epss 0.00

    A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a local attacker to escalate privileges.

  • CVE-2021-3550HigJul 16, 2021
    risk 0.51cvss 7.8epss 0.00

    A DLL search path vulnerability was reported in Lenovo PCManager, prior to version 3.0.500.5102, that could allow privilege escalation.

  • CVE-2021-3464HigApr 27, 2021
    risk 0.51cvss 7.8epss 0.00

    A DLL search path vulnerability was reported in Lenovo PCManager, prior to version 3.0.400.3252, that could allow privilege escalation.

  • CVE-2020-8351HigNov 30, 2020
    risk 0.51cvss 7.8epss 0.00

    A privilege escalation vulnerability was reported in Lenovo PCManager prior to version 3.0.50.9162 that could allow an authenticated user to execute code with elevated privileges.

  • CVE-2025-10495HigNov 12, 2025
    risk 0.49cvss 7.5epss 0.00

    A potential vulnerability was reported in the Lenovo PC Manager, Lenovo App Store, Lenovo Browser, and Lenovo Legion Zone client applications that, under certain conditions, could allow an attacker on the same logical network to execute arbitrary code.

  • CVE-2022-1513HigAug 23, 2022
    risk 0.47cvss 7.3epss 0.00

    A potential vulnerability was reported in Lenovo PCManager prior to version 5.0.10.4191 that may allow code execution when visiting a specially crafted website.

  • CVE-2022-0192HigApr 22, 2022
    risk 0.47cvss 7.3epss 0.00

    A DLL search path vulnerability was reported in Lenovo PCManager prior to version 4.0.40.2175 that could allow privilege escalation.

  • CVE-2025-2503HigMay 30, 2025
    risk 0.46cvss 7.1epss 0.00

    An improper permission handling vulnerability was reported in Lenovo PC Manager that could allow a local attacker to perform arbitrary file deletions as an elevated user.

  • CVE-2017-3772MedJul 31, 2024
    risk 0.36cvss 5.5epss 0.00

    A vulnerability was reported in Lenovo PC Manager versions prior to 2.6.40.3154 that could allow an attacker to cause a system reboot.

  • CVE-2021-3721MedApr 22, 2022
    risk 0.36cvss 5.5epss 0.00

    A denial of service vulnerability was reported in Lenovo PCManager prior to version 4.0.20.10282 that could allow an attacker with local access to trigger a blue screen error.

  • CVE-2021-3451MedApr 27, 2021
    risk 0.36cvss 5.5epss 0.00

    A denial of service vulnerability was reported in Lenovo PCManager, prior to version 3.0.400.3252, that could allow configuration files to be written to non-standard locations.

  • CVE-2020-8357MedMar 9, 2021
    risk 0.36cvss 5.5epss 0.00

    A denial of service vulnerability was reported in Lenovo PCManager, prior to version 3.0.200.2042, that could allow configuration files to be written to non-standard locations.

  • CVE-2021-3722MedApr 22, 2022
    risk 0.33cvss 5.0epss 0.00

    A denial of service vulnerability was reported in Lenovo PCManager prior to version 4.0.40.2175 that could allow configuration files to be written to non-standard locations during installation.

  • CVE-2024-10254MedJan 14, 2025
    risk 0.31cvss 4.7epss 0.00

    A potential buffer overflow vulnerability was reported in PC Manager, Lenovo Browser, and Lenovo App Store that could allow a local attacker to cause a system crash.

  • CVE-2024-10253MedJan 14, 2025
    risk 0.31cvss 4.7epss 0.00

    A potential TOCTOU vulnerability was reported in PC Manager, Lenovo Browser, and Lenovo App Store that could allow a local attacker to cause a system crash.

  • CVE-2026-2640Mar 11, 2026
    risk 0.00cvss epss 0.00

    During an internal security assessment, a potential vulnerability was discovered in Lenovo PC Manager that could allow a local authenticated user to terminate privileged processes.

  • CVE-2025-63946Feb 23, 2026
    risk 0.00cvss epss 0.00

    A privilege escalation (PE) vulnerability in the Tencent PC Manager app thru 17.10.28554.205 on Windows devices enables a local user to execute programs with elevated privileges. However, execution requires that the local user is able to successfully exploit a race condition.

Page 1 of 2