Analysis and contextual insights are available on OpenCVE Cloud.
Vendor Solution
Update Lenovo Store Windows Application to version 9.0.2930.0514 or later.
Tracking
Sign in to view the affected projects.
No advisories yet.
| Link | Providers |
|---|---|
| https://iknow.lenovo.com.cn/detail/441419 |
|
Fri, 17 Jul 2026 04:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Path Traversal in Lenovo App Store Enabling Local Code Execution |
Thu, 16 Jul 2026 18:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Thu, 16 Jul 2026 17:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A potential path traversal vulnerability was reported in Lenovo App Store, distributed exclusively in the Chinese market, that could allow a local authenticated user to execute arbitrary code. | |
| First Time appeared |
Lenovo
Lenovo app Store |
|
| Weaknesses | CWE-22 | |
| CPEs | cpe:2.3:a:lenovo:app_store:*:*:windows:*:*:*:*:* | |
| Vendors & Products |
Lenovo
Lenovo app Store |
|
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: lenovo
Published:
Updated: 2026-07-16T17:45:15.555Z
Reserved: 2026-06-23T19:38:58.369Z
Link: CVE-2026-13103
Updated: 2026-07-16T17:43:34.276Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-17T03:45:04Z