Lenovo released all patches for the Vantage vulnerabilities I reported earlier this year. The blog has been updated with write‑ups for CVE-2025-13154, CVE-2026-1715, CVE-2026-1716, and CVE-2026-1717.

https://cyllective.com/blog/posts/lenovo-vantage

@floyd @markusr

:blobsalute:

Finde dazu (noch) nichts im Netz. Warte mal ab und beobachte, wo es das zu kaufen gibt. Da aber alle grossen Ketten mittlerweile ihre eigenen haben, könnte es auch sein, dass sie dieses nicht ins Sortiment aufnehmen.

There are probably more vulns to be found, especially in the parts that I did not look at. Passing the torch to all the other researcherz.

First research in a while! Here's my brain dump on reverse-engineering and auditing Lenovo Vantage. In total, I found four (4) vulns. Check out the post and my custom tooling if you're interested.

https://mkiesel.ch/posts/lenovo-vantage/

Nobody asked for them, but here are my uBlock rules to slim down Twitter/X, Bluesky, and Mastodon. They disable fancy features and make it so that basically there are only the options to post and to view your "following" feed. No more distractions!

https://gist.github.com/rtfmkiesel/1b715971be97cfb50bb284748f497248

The #Insomnihack 2026 talks are LIVE! Top-tier speakers. Real-world security research.
Check out the full talks lineup and register now 👇
https://insomnihack.ch/?utm_source=mastodon&utm_medium=image&utm_campaign=Insomnihack2026&utm_content=2901
Seats are limited so don’t miss it!
#InsomniHack #Cybersecurity #Infosec #INSO2026 #CyberConferences

🇨🇭 With El Tony's new Mate Zero and Coop's New Prix Garantie Mate, matelab is now at 60 mate-based beverages 🧉

https://matelab.ch/