Improper implementation of update mechanism was found in Lenovo Accelerator Application. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via spoofing an update response by man-in-the-middle attack.

Technical details

To workaround this vulnerability you have to uninstall Lenovo Accelerator Application. For further instructions you can read original LEN-6718 Lenovo advisory listed below.

Lenovo Accelerator Application all versions 

Uninstall Lenovo Accelerator Application

Original advisory