CVE-2026-6281

HIGH WAF: High

CVSS 8.8 Published: 2026-05-13

CWE-78

A potential vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authenticated user on the local network to execute arbitrary commands on the device.

WAF Coverage Analysis

OS Command Injection High WAF Coverage

OWASP: A03:2021 Injection

932xxx - Remote Code Execution

References

iknow.lenovo.com.cn
pc.lenovo.com.cn

Back to CVE Database