Every CVE whose affected-product data names Lenovo A1 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2021-42850 — CVSS 8.8 (high): A weak default administrator password for the web interface and serial port was reported in some Lenovo Personal Cloud Storage devices that…
CVE-2021-42852 — CVSS 8.0 (high): A command injection vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an authenticated user to…
CVE-2021-42849 — CVSS 6.8 (medium): A weak default password for the serial port was reported in some Lenovo Personal Cloud Storage devices that could allow unauthorized device…
CVE-2021-42851 — CVSS 6.3 (medium): A vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an unauthenticated user to create a standard…
CVE-2021-42848 — CVSS 4.3 (medium): An information disclosure vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an unauthenticated user…