CVE-2025-4371 HIGH

CVE-2025-4371

Vendor Lenovo
Product 510 FHD Webcam
Weakness CWE-347
Published August 18, 2025
Last update August 19, 2025

CVSS base score

7.0/10
Attack vector Physical
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

A potential vulnerability was reported in the Lenovo 510 FHD and Performance FHD web cameras that could allow an attacker with physical access to write arbitrary firmware updates to the device over a USB connection.

Key dates

02Disclosure timeline

August 18, 2025 CVE published
August 19, 2025 Record updated