CVE-2025-6231 | Lenovo Vantage/Commercial Vantage prior 10.2501.20.0 Configuration File argument injection (EUVD-2025-21802)

A vulnerability has been found in Lenovo Vantage and Commercial Vantage and classified as critical. Affected by this vulnerability is an unknown functionality of the component Configuration File Handler. The manipulation leads to argument injection.

This vulnerability is known as CVE-2025-6231. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More