Lenovo-preloaded utilities such as PC Manager, Legion Space, Display Control Center on ThinkPad/ThinkBook notebooks and tablets.
Impact: Local attackers can exploit insecure default permissions or untrusted search paths to escalate privileges. CVSS scores reach up to 8.5—not yet actively exploited—but pose significant risk.
https://feedly.com/cve/CVE-2025-2503