How severe is CVE-2019-6196?

CVE-2019-6196 has a CVSS v3 score of 6.7 (MEDIUM).

CVE-2019-6196

Name: installation_package
Author: lenovo

6.7MEDIUM

A symbolic link vulnerability in some Lenovo installation packages, prior to version 1.2.9.3, could allow privileged file operations during file extraction and installation.

Published: 6/9/2020Updated: 11/21/2024

Description

A symbolic link vulnerability in some Lenovo installation packages, prior to version 1.2.9.3, could allow privileged file operations during file extraction and installation.

AI AnalysisPowered by AI

Affected Products

lenovoinstallation_package

References

https://support.lenovo.com/us/en/product_security/len-27431
PatchVendor Advisory
https://support.lenovo.com/us/en/product_security/len-27431
PatchVendor Advisory