Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2025-11193
PUBLISHED
More InfoOfficial Page
Assigner-lenovo
Assigner Org ID-da227ddf-6e25-4b41-b023-0f976dcaca4b
View Known Exploited Vulnerability (KEV) details
Published At-03 Nov, 2025 | 21:40
Updated At-03 Nov, 2025 | 21:47
Rejected At-
▼CVE Numbering Authority (CNA)

A potential vulnerability was reported in some Lenovo Tablets that could allow a local authenticated user or application to gain access to sensitive device specific information.

Affected Products
Vendor
Lenovo Group LimitedLenovo
Product
Tab M11 TB330FU TB330XU
Default Status
unaffected
Versions
Affected
  • From 0 before TB330FU_ROW_OPEN_USER_V5_V_ZUI_17.0.274_ST_251011 (custom)
  • From 0 before TB330XU_ROW_OPEN_USER_V5_V_ZUI_17.0.235_ST_251011 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab K11 TB330FU TB330FUP TB330XU TB330XUP
Default Status
unaffected
Versions
Affected
  • From 0 before TB330FU_ROW_OPEN_USER_V5_V_ZUI_17.0.274_ST_251011 (custom)
  • From 0 before TB330XU_ROW_OPEN_USER_V5_V_ZUI_17.0.235_ST_251011 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Idea Tab Pro TB373FU
Default Status
unaffected
Versions
Affected
  • From 0 before 17.0.04.184 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab WiFi 5G
Default Status
unaffected
Versions
Affected
  • From 0 before 17.0.10.457 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab K9 TB305FU
Default Status
unaffected
Versions
Affected
  • From 0 before 17.0.10.069 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab K9 TB305XU
Default Status
unaffected
Versions
Affected
  • From 0 before 17.0.10.065 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab Plus TB520FU
Default Status
unaffected
Versions
Affected
  • From 0 before 17.0.12.203 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab M8 4th Gen 2024 TB301FU TB301XU
Default Status
unaffected
Versions
Affected
  • From 0 before TB300FU_USR_S101112_250919_MP1V1111_ROW (custom)
  • From 0 before TB300XU_USR_S101103_250919_MP1V1111_ROW (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab Extreme TB570ZU TB570FU
Default Status
unaffected
Versions
Affected
  • From 0 before 17.0.104 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab M10 5G TB360ZU
Default Status
unaffected
Versions
Affected
  • From 0 before 16.0.783 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab M8 4th Gen TB300FU TB300XU
Default Status
unaffected
Versions
Affected
  • From 0 before TB300FU_USR_S101112_250919_MP1V1111_ROW (custom)
  • From 0 before TB300XU_USR_S101103_250919_MP1V1111_ROW (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab M9 TB310FU TB310XU
Default Status
unaffected
Versions
Affected
  • From 0 before TB310FU_USR_S000912_2510022135_mp1V969_ROW (custom)
  • From 0 before TB310XU_USR_S000913_2510021921_mp1V969_ROW (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab P11 2nd Gen TB350XU TB350FU
Default Status
unaffected
Versions
Affected
  • From 0 before TB350XU_USER_S230920_2508120308_MP_ROW (custom)
  • From 0 before TB350FU_USER_S230917_2508090248_MP_ROW (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab P12 TB370FU TB372FU
Default Status
unaffected
Versions
Affected
  • From 0 before TB370FU_ROW_OPEN_USER_V5_V_ZUI_17.0.187_ST_250817 (custom)
  • From 0 before TB372FC_ROW_OPEN_USER_V5_V_ZUI_17.0.116_ST_250822 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab WIFI
Default Status
unaffected
Versions
Affected
  • From 0 before 17.0.30.303 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab K11 Plus LTE TB352FU TB352XU
Default Status
unaffected
Versions
Affected
  • From 0 before 17.0.10.213 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab K11 Plus WIFI TB352FU
Default Status
unaffected
Versions
Affected
  • From 0 before 17.0.10.213 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Yoga Tab Plus TB520FU
Default Status
unaffected
Versions
Affected
  • From 0 before 17.5.10.035 (custom)
Vendor
Lenovo Group LimitedLenovo
Product
Tab One TB305FUXU
Default Status
unaffected
Versions
Affected
  • From 0 before 17.0.10.107 (custom)
Problem Types
TypeCWE IDDescription
CWECWE-256CWE-256: Plaintext Storage of a Password
Type: CWE
CWE ID: CWE-256
Description: CWE-256: Plaintext Storage of a Password
Metrics
VersionBase scoreBase severityVector
4.06.8MEDIUM
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
3.15.5MEDIUM
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Version: 4.0
Base score: 6.8
Base severity: MEDIUM
Vector:
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
Version: 3.1
Base score: 5.5
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Update to the version (or newer) indicated for your model in the Product Impact section in the advisory:  https://support.lenovo.com/us/en/product_security/LEN-202383 See details on updating your Lenovo Android device here https://pcsupport.lenovo.com/us/en/solutions/ht117027 .

Configurations
Workarounds
Exploits
Credits
finder
Lenovo thanks Tim Schumacher for reporting this issue.
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://support.lenovo.com/us/en/product_security/LEN-202383
N/A
Hyperlink: https://support.lenovo.com/us/en/product_security/LEN-202383
Resource: N/A
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found