CVSS: 4.7EPSS: 0%CPEs: 3EXPL: 0CVE-2024-10254
https://notcve.org/view.php?id=CVE-2024-10254
14 Jan 2025 — A potential buffer overflow vulnerability was reported in PC Manager, Lenovo Browser, and Lenovo App Store that could allow a local attacker to cause a system crash. • https://iknow.lenovo.com.cn/detail/425367 • CWE-122: Heap-based Buffer Overflow •
CVSS: 4.7EPSS: 0%CPEs: 3EXPL: 0CVE-2024-10253
https://notcve.org/view.php?id=CVE-2024-10253
14 Jan 2025 — A potential TOCTOU vulnerability was reported in PC Manager, Lenovo Browser, and Lenovo App Store that could allow a local attacker to cause a system crash. • https://iknow.lenovo.com.cn/detail/425367 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-6540
https://notcve.org/view.php?id=CVE-2023-6540
03 Jan 2024 — A vulnerability was reported in the Lenovo Browser Mobile and Lenovo Browser HD Apps for Android that could allow an attacker to craft a payload that could result in the disclosure of sensitive information. Se informó una vulnerabilidad en las aplicaciones Lenovo Browser Mobile y Lenovo Browser HD para Android que podría permitir a un atacante manipular un payload que podría resultar en la divulgación de información confidencial. • https://iknow.lenovo.com.cn/detail/419251 • CWE-94: Improper Control of Generation of Code ('Code Injection') •