Zero Day MonitorZDM

← Back to list

EST

PRE-CVEPATCHED

lenovo · legionspace

Lenovo LegionSpace 1.7.11.2 'DAService' Unquoted Service Path Vulnerability

60% confidence

Description

Lenovo LegionSpace version 1.7.11.2 contains an unquoted service path vulnerability in the 'DAService' component (service path: C:\Program Files\Lenovo\LegionSpace\1.7.11.2\LSDaemon.exe). This allows local attackers to execute arbitrary code with elevated privileges by inserting malicious code into the system root path.

Affected Products

Vendor	Product	Versions
lenovo	legionspace	1.7.11.2

Related News (1 articles)

Tier C

Exploit-DB14h ago

[local] Lenovo LegionSpace 1.7.11.2 - 'DAService' Unquoted Service Path

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

Patch available

1.8.12.13

CWECWE-250

PublishedMay 21, 2026

Last enriched53m ago

Tags

unquoted service pathlocal privilege escalation

Trending Score19

Source articles1

Independent1

Info Completeness8/14

Missing: cve_id, cvss, epss, kev, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

NONECVE-2026-6281EXP

CVE-2026-6281: A potential vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authentic

NONECVE-2026-6282EXP

CVE-2026-6282: A potential improper file path validation vulnerability was reported in some Lenovo Personal Cloud Storage devices that

HIGHCVE-2026-4145

CVE-2026-4145: During an internal security assessment, a potential vulnerability was discovered in Lenovo Software Fix that could allow

HIGHCVE-2026-0827

CVE-2026-0827: During an internal security assessment, a potential vulnerability was discovered in Lenovo Diagnostics and the HardwareS

HIGHCVE-2026-4134

CVE-2026-4134: During an internal security assessment, a potential vulnerability was discovered in Lenovo Software Fix, that during ins

Pin to Dashboard

Verification

State: reported

Confidence: 60%

Vulnerability Timeline

CVE Published

May 21, 2026

Exploit Available

May 21, 2026

Patch Available

May 21, 2026

Discovered by ZDM

May 21, 2026