CVE-2015-2219

Lenovo System Update < 5.06.0027 - Privilege Escalation via Predictable Security Token

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2015-2219. PoCs published by Metasploit, Michael Milvich, Sofiane Talmat, h0ng10, including Metasploit module exploits/windows/local/lenovo_systemupdate.

AI-analyzed exploit summary This Metasploit module exploits a privilege escalation vulnerability in Lenovo System Update by interacting with the named pipe \SUPipeServer to execute arbitrary commands as SYSTEM using a security token generated by tvsutil.dll.

Description

Lenovo System Update (formerly ThinkVantage System Update) before 5.06.0034 uses predictable security tokens, which allows local users to gain privileges by sending a valid token with a command to the System Update service (SUService.exe) through an unspecified named pipe.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubylocalwindows
https://www.exploit-db.com/exploits/41708

This Metasploit module exploits a privilege escalation vulnerability in Lenovo System Update by interacting with the named pipe \SUPipeServer to execute arbitrary commands as SYSTEM using a security token generated by tvsutil.dll.

Classification
Working Poc 100%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Lenovo System Update
No auth needed
Prerequisites: Access to a vulnerable Lenovo System Update service · Ability to start/stop the service via ConfigService.exe
devstral-2 · analyzed Feb 18, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by Michael Milvich, Sofiane Talmat, h0ng10 · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/local/lenovo_systemupdate.rb

This Metasploit module exploits a privilege escalation vulnerability in Lenovo System Update by interacting with the named pipe \SUPipeServer to execute arbitrary commands as SYSTEM using a security token generated by tvsutil.dll.

Classification
Working Poc 100%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Lenovo System Update
No auth needed
Prerequisites: Lenovo System Update service installed · Access to the system as a non-privileged user
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/74649
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id/1032268

Scores

EPSS 0.0415
EPSS Percentile 89.5%

Details

CWE
CWE-264
Status published
Products (1)
lenovo/system_update < 5.06.0027
Published May 12, 2015
Tracked Since Feb 18, 2026