Known Vulnerabilities for System Update by Lenovo
Listed below are 10 of the newest known vulnerabilities associated with "System Update" by "Lenovo".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-55742 json | Cotonti 1.0.0 (master branch, commit f43f1fc3) is vulnerable to Cross-Site Request Forgery in the administration rights handl... | Not Provided | 2026-06-18 | 2026-06-18 |
| CVE-2026-55741 json | Cotonti 1.0.0 (master branch, commit f43f1fc3) is vulnerable to Cross-Site Request Forgery in the administration configuratio... | Not Provided | 2026-06-18 | 2026-06-18 |
| CVE-2026-54105 json | The U.S. Government Accountability Office (GAO) Electronic Protest Docketing System (EPDS) and Civilian Board of Contract App... | Not Provided | 2026-06-18 | 2026-06-24 |
| CVE-2026-54103 json | The U.S. Government Accountability Office (GAO) Electronic Protest Docketing System (EPDS) and Civilian Board of Contract App... | Not Provided | 2026-06-18 | 2026-06-22 |
| CVE-2026-50281 json | Craft CMS is a content management system (CMS). Versions 5.7.0 and above, prior to 5.9.21 contain a mass-assignment flaw in t... | Not Provided | 2026-07-02 | 2026-07-02 |
| CVE-2026-46748 json | A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The affected system includes a binary th... | Not Provided | 2026-06-09 | 2026-06-09 |
| CVE-2026-46747 json | A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The affected application does not proper... | Not Provided | 2026-06-09 | 2026-06-09 |
| CVE-2026-46746 json | A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The application does not properly saniti... | Not Provided | 2026-06-09 | 2026-06-09 |
| CVE-2026-45625 json | Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1.19.0, Arcane's huma-based RE... | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2026-45228 json | Quark Drive before 0.8.5 contains a stored cross-site scripting vulnerability in the System Configuration page where the temp... | Not Provided | 2026-05-13 | 2026-05-13 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Lenovo | System Update | 5.07.0106 | |||
| Application | Lenovo | System Update | 5.07.0088 | |||
| Application | Lenovo | System Update | 5.07.0084 | |||
| Application | Lenovo | System Update | 5.07.0072 | |||
| Application | Lenovo | System Update | 5.07.0019 | |||
| Application | Lenovo | System Update | 5.07.0013 | |||
| Application | Lenovo | System Update | 5.07.0008 | |||
| Application | Lenovo | System Update | 5.06.0043 | |||
| Application | Lenovo | System Update | 5.06.0034 | |||
| Application | Lenovo | System Update | 5.06.0027 | |||
| Application | Lenovo | System Update | - |