CVE-2025-13454

Medium

Low Medium High Critical

4.7

CVSS Score

Published: Jan 14, 2026

Last Modified: Jan 14, 2026

Vulnerability Description

A potential vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to gain access to sensitive device information.

CVSS Metrics

Common Vulnerability Scoring System

Vector String:

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

References & Resources

https://iknow.lenovo.com.cn/detail/436983
psirt@lenovo.com

Severity Details

4.7

out of 10.0

Medium

Key Information

Published Date: January 14, 2026

External Resources

NIST NVD

National Vulnerability Database

CVE Details

Detailed vulnerability info

MITRE CVE

Official CVE record

CVE Vulnerabilities

Posts & Pages