Denial of Service Vulnerability in Lenovo PCManager Software
CVE-2021-3451

5.5MEDIUM

Key Information:

Vendor: Lenovo
Status: Pcmanager
Vendor: CVE Published:; 27 April 2021

What is CVE-2021-3451?

A denial of service vulnerability exists in Lenovo's PCManager software, allowing configuration files to be written to non-standard locations. This could potentially disrupt normal operations and compromise system integrity. Users are advised to upgrade to version 3.0.400.3252 or later to mitigate this risk.

Affected Version(s)

PCManager < 3.0.400.3252

References

https://iknow.lenovo.com.cn/detail/dc_196156.html

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 27, 2021
Vulnerability Reserved
Mar 19, 2021

Credit

Lenovo thanks She ZhenHua for reporting this issue.