CVE-2019-6154
MEDIUMLenovo Bootable Generator < Mar-2019 - Untrusted Search Path
Title source: llmDescription
A DLL search path vulnerability was reported in Lenovo Bootable Generator, prior to version Mar-2019, that could allow a malicious user with local access to execute code on the system.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://support.lenovo.com/solutions/LEN-25401
Scores
CVSS v3
5.3
EPSS
0.0024
EPSS Percentile
46.9%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Details
CWE
CWE-426
Status
published
Products (1)
lenovo/bootable_usb
< mar-2019
Published
Apr 10, 2019
Tracked Since
Feb 18, 2026