CVE-2019-6163
Severity Score
7.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
A denial of service vulnerability was reported in Lenovo System Update before version 5.07.0084 that could allow service log files to be written to non-standard locations.
Se comunicó una vulnerabilidad de denegación de servicio en Lenovo System Update en versiones anteriores a la 5.07.0084 que podría permitir que los archivos de registro de servicio sean escritos en ubicaciones no standard.
*Credits:
Lenovo would like to thank Eran Shimony at CyberArk Labs for reporting this issue.
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2019-01-11 CVE Reserved
- 2019-06-26 CVE Published
- 2023-03-07 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-404: Improper Resource Shutdown or Release
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://support.lenovo.com/solutions/LEN-27348 | 2019-09-13 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | B Series Search vendor "Lenovo" for product "B Series" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | C100 Search vendor "Lenovo" for product "C100" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | C200 Search vendor "Lenovo" for product "C200" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | E Series Search vendor "Lenovo" for product "E Series" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | J100 Search vendor "Lenovo" for product "J100" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | J105 Search vendor "Lenovo" for product "J105" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | J110 Search vendor "Lenovo" for product "J110" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | J115 Search vendor "Lenovo" for product "J115" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | J200 Search vendor "Lenovo" for product "J200" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | J200p Search vendor "Lenovo" for product "J200p" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | J205 Search vendor "Lenovo" for product "J205" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | K Series Search vendor "Lenovo" for product "K Series" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | N100 Search vendor "Lenovo" for product "N100" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | N200 Search vendor "Lenovo" for product "N200" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | S200 Search vendor "Lenovo" for product "S200" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | S200p Search vendor "Lenovo" for product "S200p" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | S205 Search vendor "Lenovo" for product "S205" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre Search vendor "Lenovo" for product "Thinkcentre" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad Search vendor "Lenovo" for product "Thinkpad" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkstation Search vendor "Lenovo" for product "Thinkstation" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V Series Search vendor "Lenovo" for product "V Series" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V100 Search vendor "Lenovo" for product "V100" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | System Update Search vendor "Lenovo" for product "System Update" | < 5.07.0084 Search vendor "Lenovo" for product "System Update" and version " < 5.07.0084" | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V200 Search vendor "Lenovo" for product "V200" | - | - |
Safe
|