CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-6149

An unquoted search path vulnerability was identified in Lenovo Dynamic Power Reduction Utility prior to version 2.2.2.0 that could allow a malicious user with local access to execute code with administrative privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.3%

CVSS Severity

CVSS v3 Score 6.7

CVSS v2 Score 7.2

References

http://www.securityfocus.com/bid/107438
https://support.lenovo.com/solutions/LEN-25674
http://www.securityfocus.com/bid/107438
https://support.lenovo.com/solutions/LEN-25674

Products affected by CVE-2019-6149

Lenovo » Dynamic Power Reduction » Version: Any

cpe:2.3:a:lenovo:dynamic_power_reduction:*
Lenovo » Thinkpad X1 Carbon » Version: N/A

cpe:2.3:h:lenovo:thinkpad_x1_carbon:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-6149

Products

Pricing

Contact Us