CVE-2026-6281

🗓️ 13 May 2026 14:15:06Reported by lenovoType

CVE-2026-6281: An authenticated user on the local network may execute arbitrary commands on Lenovo Personal Cloud Storage.

Reporter	Title	Published	Views	Family All 7
ATTACKERKB	CVE-2026-6281	13 May 202614:15	–	attackerkb
CNNVD	Lenovo Personal Cloud Storage 操作系统命令注入漏洞	13 May 202600:00	–	cnnvd
Cvelist	CVE-2026-6281	13 May 202614:15	–	cvelist
EUVD	EUVD-2026-30040	13 May 202618:30	–	euvd
NVD	CVE-2026-6281	13 May 202616:17	–	nvd
Positive Technologies	PT-2026-40698	13 May 202600:00	–	ptsecurity
Vulnrichment	CVE-2026-6281	13 May 202614:15	–	vulnrichment

Vulners

CNA

Node

lenovo home_storage_hub_x20Range≤5.4.4.020.1

lenovo personal_cloud_a1sRange≤5.5.6.a1s

lenovo personal_cloud_x1Range≤5.4.7.01.1

[
  {
    "vendor": "Lenovo",
    "product": "Personal Cloud T2s",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "5.5.6.t2s.3",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Lenovo",
    "product": "Personal Cloud T2Pro",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "5.4.8.t2pro.2",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Lenovo",
    "product": "Personal Cloud X1s",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "5.4.8.x1s.2",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Lenovo",
    "product": "Home Storage Hub T20",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "5.5.8.t20.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Lenovo",
    "product": "Home Storage Hub X20",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "5.4.4.x20.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Lenovo",
    "product": "Personal Cloud T1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThanOrEqual": "5.4.0.t1.6",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Lenovo",
    "product": "Personal Cloud A1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThanOrEqual": "5.4.2.a1.3",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Lenovo",
    "product": "Personal Cloud A1s",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThanOrEqual": "5.5.6.a1s",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Lenovo",
    "product": "Personal Cloud T2",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThanOrEqual": "5.4.5.t2.2",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Lenovo",
    "product": "Personal Cloud X1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThanOrEqual": "5.4.7.x1.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
iknow	www.iknow.lenovo.com.cn/detail/440274
pc	www.pc.lenovo.com.cn/tips/Ann/t1_eol.html

13 May 2026 16:27Current

6.1Medium risk

Vulners AI Score6.1

CVSS 48.7

CVSS 3.18.8

EPSS0.00215

SSVC

CWE-78