Lenovo System Update (formerly ThinkVantage System Update) before 5.06.0034 uses predictable security tokens, which allows local users to gain privileges by sending a valid token with a command to the System Update service (SUService.exe) through an unspecified named pipe.
CPE | Name | Operator | Version |
---|---|---|---|
system_update | le | 5.06.0027 |