Known Vulnerabilities for App Store by Lenovo
Listed below are 1 of the newest known vulnerabilities associated with "App Store" by "Lenovo".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-63081 json | Perfect Support Ticketing & Document Management System through 1.7 contains a stored cross-site scripting vulnerability that ... | Not Provided | 2026-07-16 | 2026-07-16 |
| CVE-2026-61736 json | LightRAG provides simple and fast retrieval-augmented generation. Prior to 1.5.4, the server defaults to CORS_ORIGINS=* combi... | Not Provided | 2026-07-15 | 2026-07-15 |
| CVE-2026-61504 json | Rejetto HFS 3.0.0 through 3.2.0 does not escape file names in its fallback "basic" web listing, and this listing can be force... | Not Provided | 2026-07-13 | 2026-07-14 |
| CVE-2026-61461 json | Dify before 1.16.0-rc1 contains a SQL injection vulnerability in the MyScale vector store backend that allows attackers to ex... | Not Provided | 2026-07-10 | 2026-07-10 |
| CVE-2026-60090 json | PraisonAI before 4.6.78 fails to validate the caller-controlled dimension argument in the PGVector and Cassandra knowledge-st... | Not Provided | 2026-07-11 | 2026-07-14 |
| CVE-2026-59818 json | etcd is a distributed key-value store for the data of a distributed system. Prior to 3.5.32 and 3.6.13, when etcd is configur... | Not Provided | 2026-07-08 | 2026-07-09 |
| CVE-2026-59726 json | Ruflo is an agent meta-harness for Claude Code and Codex. Prior to 3.16.3, ruflo's default docker-compose deployment exposed ... | Not Provided | 2026-07-09 | 2026-07-09 |
| CVE-2026-59094 json | Pathway through 0.31.1, fixed in commit d09722e, document store applies a caller-supplied glob pattern to indexed document pa... | Not Provided | 2026-07-02 | 2026-07-14 |
| CVE-2026-58657 json | Grav before 2.0.0 (affected through 2.0.0-rc.9 and the 2.0 branch) contains a stored CSS injection vulnerability in the Markd... | Not Provided | 2026-07-08 | 2026-07-08 |
| CVE-2026-58654 json | The Grav API plugin (getgrav/grav-plugin-api) 1.0.0 contains an unrestricted file upload vulnerability in the avatar upload e... | Not Provided | 2026-07-08 | 2026-07-08 |