CVE-2026-2640

MEDIUM 5.5

CVSS Score

5.5

EPSS Score

0.0%

EPSS Percentile

0th

During an internal security assessment, a potential vulnerability was discovered in Lenovo PC Manager that could allow a local authenticated user to terminate privileged processes.

CWE	CWE-269
Vendor	lenovo
Product	pc manager
Published	Mar 11, 2026
Last Updated	Mar 12, 2026

Stay Ahead of the Next One

Get instant alerts for lenovo pc manager

Be the first to know when new medium vulnerabilities affecting lenovo pc manager are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Affected Versions

Lenovo / PC Manager

0 < 5.1.160.12302

References

NVD ↗ CVE.org ↗ EPSS Data ↗

iknow.lenovo.com.cn: https://iknow.lenovo.com.cn/detail/438816

Credits

Lenovo thanks Victor Soler Renaud of Devoteam Purple Team for subsequently reporting this vulnerability.