Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-2503

An improper permission handling vulnerability was reported in Lenovo PC Manager that could allow a local attacker to perform arbitrary file deletions as an elevated user.

Published

2025-05-30T20:15:42.563

Last Modified

2026-02-02T15:31:43.057

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.1 (HIGH)

Weaknesses

Type: Secondary
CWE-732

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	lenovo	pcmanager	< 5.1.110.5082	Yes

References

https://iknow.lenovo.com.cn/detail/428586 Vendor Advisory ([email protected])