A command injection vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an authenticated user to execute operating system commands by sending a crafted packet to the device.
Published May 18, 2022.
Lenovo A1 Firmware
Lenovo T2 Firmware
Lenovo T2pro Firmware
Lenovo T1 Firmware
Lenovo X1 Firmware