CVE-2021-42848
- EPSS 0.21%
- Veröffentlicht 18.05.2022 16:15:08
- Zuletzt bearbeitet 21.11.2024 06:28:13
An information disclosure vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an unauthenticated user to retrieve device and networking details.
CVE-2021-42849
- EPSS 0.12%
- Veröffentlicht 18.05.2022 16:15:08
- Zuletzt bearbeitet 21.11.2024 06:28:13
A weak default password for the serial port was reported in some Lenovo Personal Cloud Storage devices that could allow unauthorized device access to an attacker with physical access.
CVE-2021-42850
- EPSS 0.04%
- Veröffentlicht 18.05.2022 16:15:08
- Zuletzt bearbeitet 21.11.2024 06:28:13
A weak default administrator password for the web interface and serial port was reported in some Lenovo Personal Cloud Storage devices that could allow unauthorized device access to an attacker with physical or local network access.
CVE-2021-42851
- EPSS 0.36%
- Veröffentlicht 18.05.2022 16:15:08
- Zuletzt bearbeitet 21.11.2024 06:28:13
A vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an unauthenticated user to create a standard user account.
- EPSS 0.08%
- Veröffentlicht 18.05.2022 16:15:08
- Zuletzt bearbeitet 21.11.2024 06:28:13
A command injection vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an authenticated user to execute operating system commands by sending a crafted packet to the device.