An unquoted search path vulnerability was identified in Lenovo Dynamic Power Reduction Utility prior to version 2.2.2.0 that could allow a malicious user with local access to execute code with. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.
Lenovo
Information Disclosure
Dynamic Power Reduction
NVD
CVSS 3.0
6.7
EPSS
0.5%