CVE-2025-0886 | Lenovo Elliptic Virtual Lock Sensor for X13 Yoga Gen 4 default permission (EUVD-2025-21807)

A vulnerability was found in Lenovo Elliptic Virtual Lock Sensor Service for ThinkPad P1 Gen 6, Elliptic Human Presence Detection Driver for ThinkPad P1 Gen 7, Elliptic Virtual Lock Sensor Service for P14s Gen 4, Elliptic Human Presence Detection Device Driver for ThinkPad P14s Gen 4, Elliptic Human Presence Detection Driver for ThinkPad P14s Gen 5, Elliptic Human Presence Detection Device Driver for ThinkPad P14s Gen 5, Elliptic Human Presence detection Device Driver for ThinkPad P16 Gen 2, Elliptic Virtual Lock Sensor Service for P16s Gen 2, Elliptic Human Presence Detection Device Driver for ThinkPad P16s Gen 2, lliptic Human Presence Detection Driver for P16s Gen 3, Elliptic Human Presence Detection Device Driver for ThinkPad P16v Gen 1, Elliptic Human Presence Detection Driver for ThinkPad P16v Gen 1, Elliptic Human Presence Detection Device Driver for ThinkPad P16v Gen 2, Elliptic Virtual Lock Sensor Service for ThinkPad T14 Gen 3, Elliptic Virtual Lock Sensor Service for ThinkPad T14 Gen 3 , Elliptic Virtual Lock Sensor Service for T14 Gen 4, Elliptic Human Presence Detection Device Driver for T14 Gen 4, lliptic Human Presence Detection Device Driver for T14 Gen 5, Elliptic Human Presence Detection Device Driver for T14 Gen 5, Elliptic Virtual Lock Sensor Service for T14s Gen 4, Elliptic Human Presence Detection Device Driver for ThinkPad T14s Gen 4, Elliptic Human Presence Detection Device Driver for T14s Gen 5, Elliptic Human Presence Detection driver for ThinkPad T14s Gen 6, Elliptic Virtual Lock Sensor Service for T16 Gen 2, Elliptic Human Presence Detection Device Driver for T16 Gen 2, Elliptic Human Presence Detection Device Driver for T16 Gen 3, Elliptic Virtual Lock Sensor Service for X1 2-in-1 Gen 9, Elliptic Virtual Lock Sensor Service for ThinkPad X1 Carbon 12th Gen, Elliptic Human Presence Detection Device Driver for X13 2-in-1 Gen 5, Elliptic Virtual Lock Sensor for ThinkPad X13 Gen 4, Elliptic Human Presence Detection Driver for ThinkPad X13 Gen 4, Elliptic Human Presence Detection Device Driver for X13 Gen 5 and Elliptic Virtual Lock Sensor for X13 Yoga Gen 4. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to incorrect default permissions.

The identification of this vulnerability is CVE-2025-0886. The attack needs to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-0886 | Lenovo Elliptic Virtual Lock Sensor for X13 Yoga Gen 4 default permission (EUVD-2025-21807)

Post correlati

CVE-2025-1447 | kasuganosoras Pigeon 1.0.177 index.php url server-side request forgery

CVE-2024-26942 | Linux Kernel up to 6.8.2/6.9-rc1 at803x at8031_probe denial of service (a8a296ad9957/6a4aee277740)

CVE-2024-13351 | Repuso Plugin up to 5.20 on WordPress cross site scripting

CVE-2024-12128 | Simple Ecommerce Shopping Cart Plugin up to 3.1.2 on WordPress monthly_sales_current_year cross site scripting