CVE-2025-13154 in Vantageinfo

Zusammenfassung

von MITRE • 15.01.2026

An improper link following vulnerability was reported in the SmartPerformanceAddin for Lenovo Vantage that could allow an authenticated local user to perform an arbitrary file deletion with elevated privileges.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

Lenovo

Reservieren

13.11.2025

Veröffentlichung

15.01.2026

Moderieren

akzeptiert

Eintrag

VDB-341241

CPE

bereit

CWE

CWE-59 (bestätigt)

CVSS

5.5 (CNA)

EPSS

0.00033

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-13154
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-13154
CVE Details	https://www.cvedetails.com/cve/CVE-2025-13154/

◂ Zurück Übersicht Weiter ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!