Lenovo Personal Cloud Storage Devices Vulnerable to Unauthorized Access via Weak Default Password

Lenovo Personal Cloud Storage Devices Vulnerable to Unauthorized Access via Weak Default Password

CVE-2021-42849 · MEDIUM Severity

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A weak default password for the serial port was reported in some Lenovo Personal Cloud Storage devices that could allow unauthorized device access to an attacker with physical access.

Learn more about our Cloud Audit.