Vulnerabilities (CVE)

Filtered by vendor Lenovo Subscribe
Filtered by product Smart Assistant
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-9070 1 Lenovo 1 Smart Assistant 2024-11-21 6.9 MEDIUM 6.4 MEDIUM
For the Lenovo Smart Assistant Android app versions earlier than 12.1.82, an attacker with physical access to the smart speaker can, by pressing a specific button sequence, enter factory test mode and enable a web service intended for testing the device. As with most test modes, this provides extra privileges, including changing settings and running code. Lenovo Smart Assistant is an Amazon Alexa-enabled smart speaker developed by Lenovo.