Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

T2pro Firmware Security Vulnerabilities

cve
cve

CVE-2021-42848

An information disclosure vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an unauthenticated user to retrieve device and networking details.

5.3CVSS

5.1AI Score

0.001EPSS

2022-05-18 04:15 PM
53
cve
cve

CVE-2021-42849

A weak default password for the serial port was reported in some Lenovo Personal Cloud Storage devices that could allow unauthorized device access to an attacker with physical access.

6.8CVSS

6.5AI Score

0.001EPSS

2022-05-18 04:15 PM
55
cve
cve

CVE-2021-42850

A weak default administrator password for the web interface and serial port was reported in some Lenovo Personal Cloud Storage devices that could allow unauthorized device access to an attacker with physical or local network access.

8.8CVSS

7.4AI Score

0.0004EPSS

2022-05-18 04:15 PM
50
cve
cve

CVE-2021-42851

A vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an unauthenticated user to create a standard user account.

6.3CVSS

5.3AI Score

0.001EPSS

2022-05-18 04:15 PM
50
4
cve
cve

CVE-2021-42852

A command injection vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an authenticated user to execute operating system commands by sending a crafted packet to the device.

8CVSS

8AI Score

0.0004EPSS

2022-05-18 04:15 PM
49
2