Elevated Privilege Vulnerability in Lenovo Software Fix
CVE-2026-4145

8.5HIGH

Key Information:

Vendor: Lenovo
Status: Software Fix
Vendor: CVE Published:; 15 April 2026

What is CVE-2026-4145?

A vulnerability identified in Lenovo Software Fix could enable local authenticated users to execute arbitrary code with elevated privileges. This weakness poses a risk of unauthorized actions being performed on the system, potentially compromising security. It is crucial for users and organizations utilizing Lenovo Software Fix to be aware of this issue and implement necessary security measures as detailed in the vendor's advisory.

Affected Version(s)

Software Fix 0 < 7.5.5.19

References

https://support.lenovo.com/us/en/product_security/LEN-213829

CVSS V4

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 15, 2026
Vulnerability Reserved
Mar 13, 2026

CVE-2026-4145 Data

JSON