Lenovo Tablet Local Authenticated Info Disclosure CVE-2025-11193
CVE-2025-11193 Published on November 3, 2025

A potential vulnerability was reported in some Lenovo Tablets that could allow a local authenticated user or application to gain access to sensitive device specific information.

NVD

Vulnerability Analysis

CVE-2025-11193 can be exploited with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality, with no impact on integrity and availability.

Attack Vector:

LOCAL

Attack Complexity:

LOW

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

NONE

Availability Impact:

NONE

Weakness Type

Unprotected Storage of Credentials

Storing a password in plaintext may result in a system compromise. Password management issues occur when a password is stored in plaintext in an application's properties or configuration file. Storing a plaintext password in a configuration file allows anyone who can read the file access to the password-protected resource.

Products Associated with CVE-2025-11193

Want to know whenever a new CVE is published for Lenovo products? stack.watch will email you.

Lenovo Tab M11 Tb330fu Tb330xu

Lenovo Tab K11 Tb330fu Tb330fup Tb330xu Tb330xup

Lenovo Idea Tab Pro Tb373fu

Lenovo Tab Wifi 5g

Lenovo Tab K9 Tb305fu

Lenovo Tab K9 Tb305xu

Lenovo Tab Plus Tb520fu

Lenovo Tab M8 4th Gen 2024 Tb301fu Tb301xu

Lenovo Tab Extreme Tb570zu Tb570fu

Lenovo Tab M10 5g Tb360zu

Lenovo Tab M8 4th Gen Tb300fu Tb300xu

Lenovo Tab M9 Tb310fu Tb310xu

Lenovo Tab P11 2nd Gen Tb350xu Tb350fu

Lenovo Tab P12 Tb370fu Tb372fu

Lenovo Tab Wifi

Lenovo Tab K11 Plus Lte Tb352fu Tb352xu

Lenovo Tab K11 Plus Wifi Tb352fu

Lenovo Yoga Tab Plus Tb520fu

Lenovo Tab One Tb305fuxu

Affected Versions

Lenovo Tab M11 TB330FU TB330XU:

Before TB330FU_ROW_OPEN_USER_V5_V_ZUI_17.0.274_ST_251011 is affected.
Before TB330XU_ROW_OPEN_USER_V5_V_ZUI_17.0.235_ST_251011 is affected.

Lenovo Tab K11 TB330FU TB330FUP TB330XU TB330XUP:

Before TB330FU_ROW_OPEN_USER_V5_V_ZUI_17.0.274_ST_251011 is affected.
Before TB330XU_ROW_OPEN_USER_V5_V_ZUI_17.0.235_ST_251011 is affected.

Lenovo Idea Tab Pro TB373FU:

Before 17.0.04.184 is affected.

Lenovo Tab WiFi 5G:

Before 17.0.10.457 is affected.

Lenovo Tab K9 TB305FU:

Before 17.0.10.069 is affected.

Lenovo Tab K9 TB305XU:

Before 17.0.10.065 is affected.

Lenovo Tab Plus TB520FU:

Before 17.0.12.203 is affected.

Lenovo Tab M8 4th Gen 2024 TB301FU TB301XU:

Before TB300FU_USR_S101112_250919_MP1V1111_ROW is affected.
Before TB300XU_USR_S101103_250919_MP1V1111_ROW is affected.

Lenovo Tab Extreme TB570ZU TB570FU:

Before 17.0.104 is affected.

Lenovo Tab M10 5G TB360ZU:

Before 16.0.783 is affected.

Lenovo Tab M8 4th Gen TB300FU TB300XU:

Before TB300FU_USR_S101112_250919_MP1V1111_ROW is affected.
Before TB300XU_USR_S101103_250919_MP1V1111_ROW is affected.

Lenovo Tab M9 TB310FU TB310XU:

Before TB310FU_USR_S000912_2510022135_mp1V969_ROW is affected.
Before TB310XU_USR_S000913_2510021921_mp1V969_ROW is affected.

Lenovo Tab P11 2nd Gen TB350XU TB350FU:

Before TB350XU_USER_S230920_2508120308_MP_ROW is affected.
Before TB350FU_USER_S230917_2508090248_MP_ROW is affected.

Lenovo Tab P12 TB370FU TB372FU:

Before TB370FU_ROW_OPEN_USER_V5_V_ZUI_17.0.187_ST_250817 is affected.
Before TB372FC_ROW_OPEN_USER_V5_V_ZUI_17.0.116_ST_250822 is affected.

Lenovo Tab WIFI:

Before 17.0.30.303 is affected.

Lenovo Tab K11 Plus LTE TB352FU TB352XU:

Before 17.0.10.213 is affected.

Lenovo Tab K11 Plus WIFI TB352FU:

Before 17.0.10.213 is affected.

Lenovo Yoga Tab Plus TB520FU:

Before 17.5.10.035 is affected.

Lenovo Tab One TB305FUXU:

Before 17.0.10.107 is affected.

Exploit Probability

EPSS

0.02%

Percentile

5.43%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Lenovo Tablet Local Authenticated Info Disclosure CVE-2025-11193CVE-2025-11193 Published on November 3, 2025

Vulnerability Analysis

Weakness Type

Unprotected Storage of Credentials

Products Associated with CVE-2025-11193

Affected Versions

Exploit Probability

Lenovo Tablet Local Authenticated Info Disclosure CVE-2025-11193
CVE-2025-11193 Published on November 3, 2025