Skip to main content

Lenovo App Store CVE-2026-13103

| EUVDEUVD-2026-44976 HIGH
Path Traversal (CWE-22)
2026-07-16 lenovo GHSA-v9mr-vw95-5jgv
7.0
CVSS 4.0 · Vendor: lenovo
Share

Severity by source

Vendor (lenovo) PRIMARY
7.0 HIGH
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
7.3 HIGH

Local authenticated low-privilege access (AV:L/PR:L) with required user interaction (UI:R) yielding full code execution, so high C/I/A and unchanged scope.

3.1 AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
4.0 AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (lenovo).

CVSS VectorVendor: lenovo

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
P
Scope
X

Lifecycle Timeline

3
Patch available
Jul 16, 2026 - 18:18 EUVD
Analysis Generated
Jul 16, 2026 - 17:17 vuln.today
CVE Published
Jul 16, 2026 - 16:49 cve.org
HIGH 7.0

DescriptionCVE.org

A potential path traversal vulnerability was reported in Lenovo App Store, distributed exclusively in the Chinese market, that could allow a local authenticated user to execute arbitrary code.

AnalysisAI

Local code execution in Lenovo App Store (Chinese-market distribution only) lets an authenticated local user abuse a path traversal weakness to write or load files outside intended directories and run arbitrary code. The flaw was self-reported by Lenovo and carries a CVSS 4.0 base score of 7.0; there is no public exploit identified at time of analysis and it is not listed in CISA KEV. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Authenticate as low-privileged local user
Delivery
Deliver crafted package with traversal path
Exploit
App Store client fails to sanitize path
Execution
Write payload outside intended directory
Persist
Induce user action to trigger it (UI:P)
Impact
Execute arbitrary code on host

Vulnerability AssessmentAI

Exploitation Exploitation requires a local authenticated account on a device running the Chinese-market Lenovo App Store client (AV:L, PR:L), plus user interaction (UI:P) - the victim must be induced to perform an action such as confirming or triggering an install/resource operation that the client then processes. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The signals are internally consistent and point to a moderate, not critical, real-world priority. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario A low-privileged but authenticated user (or malware running in that user's context) on a Chinese-market Lenovo device crafts a package or resource with an embedded traversal path and induces the App Store client to process it, for example by getting the victim to open or confirm a malicious install prompt (UI:P). The traversal writes an executable payload to a location the client later runs, yielding arbitrary code execution on the local host. …
Remediation Update the Lenovo App Store client to the fixed release per Lenovo's advisory at https://iknow.lenovo.com.cn/detail/441419; an exact patched version number is not included in the provided data, so treat the vendor advisory as the source of the specific fix build and apply the latest available client version. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours, inventory all Lenovo devices running the App Store in Chinese markets and assess operational dependency on this application. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-13103 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy