cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-42852,https://securityvulnerability.io/vulnerability/CVE-2021-42852,Command Injection Vulnerability in Lenovo Personal Cloud Storage Devices,"A command injection vulnerability exists in Lenovo Personal Cloud Storage devices, enabling an authenticated user to run arbitrary operating system commands by sending specially crafted packets to the device. This may lead to unauthorized access and manipulation of the device's functionalities.",Lenovo,"Personal Cloud Storage A1,Personal Cloud Storage T1,Personal Cloud Storage X1,Personal Cloud Storage T2,Personal Cloud Storage T2pro",8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-05-18T16:10:34.000Z,0
CVE-2021-42851,https://securityvulnerability.io/vulnerability/CVE-2021-42851,User Account Creation Vulnerability in Lenovo Personal Cloud Storage Devices,"A security vulnerability has been identified in certain Lenovo Personal Cloud Storage devices, allowing unauthenticated users to create standard user accounts. This flaw could potentially expose sensitive data and compromise user privacy. Users are urged to apply necessary updates to secure their devices.",Lenovo,"Personal Cloud Storage A1,Personal Cloud Storage T1,Personal Cloud Storage X1,Personal Cloud Storage T2,Personal Cloud Storage T2pro",6.3,MEDIUM,0.000750000006519258,false,,false,false,false,,,false,false,,2022-05-18T16:10:32.000Z,0
CVE-2021-42850,https://securityvulnerability.io/vulnerability/CVE-2021-42850,Weak Default Administrator Credentials in Lenovo Personal Cloud Storage,"A weak default administrator password has been identified in certain Lenovo Personal Cloud Storage devices, potentially exposing these devices to unauthorized access by an attacker with physical or local network access. This vulnerability may allow attackers to gain control of the system, leading to potential data breaches and security risks. Users are urged to change their default credentials to secure their devices from potential exploitation.",Lenovo,"Personal Cloud Storage A1,Personal Cloud Storage T1,Personal Cloud Storage X1,Personal Cloud Storage T2,Personal Cloud Storage T2pro",8.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-05-18T16:10:30.000Z,0
CVE-2021-42849,https://securityvulnerability.io/vulnerability/CVE-2021-42849,Weak Default Password Vulnerability in Lenovo Personal Cloud Storage Devices,"A vulnerability has been identified in certain Lenovo Personal Cloud Storage devices where a weak default password is set for the serial port. This security flaw may allow an attacker with physical access to the device to gain unauthorized access, potentially compromising the security of sensitive data stored on the device. Users are advised to change the default password to mitigate this risk and safeguard their personal information.",Lenovo,"Personal Cloud Storage A1,Personal Cloud Storage T1,Personal Cloud Storage X1,Personal Cloud Storage T2,Personal Cloud Storage T2pro",6.8,MEDIUM,0.0006900000153109431,false,,false,false,false,,,false,false,,2022-05-18T16:10:28.000Z,0
CVE-2021-42848,https://securityvulnerability.io/vulnerability/CVE-2021-42848,Information Disclosure in Lenovo Personal Cloud Storage Devices,"An information disclosure vulnerability exists in specific Lenovo Personal Cloud Storage devices, enabling unauthenticated users to access sensitive device and network information. This vulnerability poses a significant risk, as it allows potential attackers to acquire details about the device configuration and networking environment, which can be leveraged for further malicious activities.",Lenovo,"Personal Cloud Storage A1,Personal Cloud Storage T1,Personal Cloud Storage X1,Personal Cloud Storage T2,Personal Cloud Storage T2pro",4.3,MEDIUM,0.000750000006519258,false,,false,false,false,,,false,false,,2022-05-18T16:10:27.000Z,0