DLL Hijacking Vulnerability in Lenovo PC Manager
CVE-2025-10581

8.5HIGH

Key Information:

Vendor: Lenovo
Status: Pc Manager
Vendor: CVE Published:; 15 October 2025

What is CVE-2025-10581?

A DLL hijacking vulnerability was identified in Lenovo PC Manager during an internal security assessment, potentially allowing local authenticated users to execute arbitrary code with elevated privileges. This security risk emphasizes the need for users to maintain updated software and adhere to best practices in security management to prevent unauthorized access and protect sensitive data.

Affected Version(s)

PC Manager 0 < 5.1.140.9262

References

https://iknow.lenovo.com.cn/detail/432378

CVSS V4

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 15, 2025
Vulnerability Reserved
Sep 16, 2025

JSON