Vulnerabilities (CVE)

Filtered by vendor Lenovo Subscribe
Filtered by product A1 Firmware
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-42852 1 Lenovo 10 A1, A1 Firmware, T1 and 7 more 2024-11-21 7.7 HIGH 8.0 HIGH
A command injection vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an authenticated user to execute operating system commands by sending a crafted packet to the device.
CVE-2021-42851 1 Lenovo 10 A1, A1 Firmware, T1 and 7 more 2024-11-21 5.0 MEDIUM 6.3 MEDIUM
A vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an unauthenticated user to create a standard user account.
CVE-2021-42850 1 Lenovo 10 A1, A1 Firmware, T1 and 7 more 2024-11-21 4.6 MEDIUM 8.8 HIGH
A weak default administrator password for the web interface and serial port was reported in some Lenovo Personal Cloud Storage devices that could allow unauthorized device access to an attacker with physical or local network access.
CVE-2021-42849 1 Lenovo 10 A1, A1 Firmware, T1 and 7 more 2024-11-21 4.6 MEDIUM 6.8 MEDIUM
A weak default password for the serial port was reported in some Lenovo Personal Cloud Storage devices that could allow unauthorized device access to an attacker with physical access.
CVE-2021-42848 1 Lenovo 10 A1, A1 Firmware, T1 and 7 more 2024-11-21 5.0 MEDIUM 4.3 MEDIUM
An information disclosure vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an unauthenticated user to retrieve device and networking details.