PatchSiren cyber security CVE debrief
CVE-2026-9045 Lenovo CVE debrief
A high-severity vulnerability (CVSS Score: 8.5) was discovered in Lenovo Accessories and Display Manager for Enterprise for Windows. This vulnerability allows a local authenticated user to execute arbitrary code with elevated privileges.
- Vendor
- Lenovo
- Product
- Accessories and Display Manager for Enterprise
- CVSS
- HIGH 8.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-10
- Original CVE updated
- 2026-06-10
- Advisory published
- 2026-06-10
- Advisory updated
- 2026-06-10
Who should care
Users of Lenovo Accessories and Display Manager for Enterprise for Windows should apply patches to mitigate this vulnerability.
Technical summary
The vulnerability was discovered during an internal security assessment. It allows a local authenticated user to execute arbitrary code with elevated privileges.
Defensive priority
HIGH
Recommended defensive actions
- Apply patches from Lenovo as soon as possible.
- Review and update access controls to limit local authenticated user privileges.
- Monitor systems for suspicious activity.
Evidence notes
The CVE record was published on June 10, 2026, and modified on June 10, 2026. The vendor is listed as Unknown Vendor, but evidence suggests the product is from Lenovo.
Official resources
public