admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2021/CVE-2021-428xx/CVE-2021-42850.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

267 lines
7.3 KiB
JSON
Raw Blame History

{
"id": "CVE-2021-42850",
"sourceIdentifier": "psirt@lenovo.com",
"published": "2022-05-18T16:15:08.303",
"lastModified": "2024-11-21T06:28:13.423",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A weak default administrator password for the web interface and serial port was reported in some Lenovo Personal Cloud Storage devices that could allow unauthorized device access to an attacker with physical or local network access."
},
{
"lang": "es",
"value": "En algunos dispositivos Lenovo Personal Cloud Storage fue reportado una contrase\u00f1a de administrador d\u00e9bil por defecto para la interfaz web y el puerto serie que podr\u00eda permitir el acceso no autorizado al dispositivo a un atacante con acceso f\u00edsico o a la red local"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "psirt@lenovo.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"baseScore": 4.6,
"accessVector": "LOCAL",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL"
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 3.9,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "psirt@lenovo.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-798"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-798"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:lenovo:a1_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.3.6.a1",
"matchCriteriaId": "26B4B1A2-26BB-4282-98E2-A1330A0B420A"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:a1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2E4D45D6-C702-4093-BD49-50E237FD4D94"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:lenovo:t1_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.3.6.t1",
"matchCriteriaId": "58D149F6-8029-4DCB-AE37-F094CE09CCDC"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:t1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5AA9C614-61D6-4329-9BAE-EB24A68FAE6B"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:lenovo:x1_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.3.8.x1",
"matchCriteriaId": "055D03D9-F4BE-4EAE-AF07-D8E807C0BF26"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:x1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "282CCA7C-F1B8-4E0D-923D-36C1E630EBF4"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:lenovo:t2_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.3.8.t2",
"matchCriteriaId": "DECB887A-404E-4DFA-B1F0-B12DC2376487"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:t2:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1783634F-B40E-48C4-8102-8112C9BC95F4"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:lenovo:t2pro_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.3.7.t2-pro",
"matchCriteriaId": "44D09A84-C0BE-4EB6-99F8-30184D7C8A40"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:t2pro:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E31C853A-15FD-4D72-BA16-395A282E1E6B"
}
]
}
]
}
],
"references": [
{
"url": "https://iknow.lenovo.com.cn/detail/dc_200017.html",
"source": "psirt@lenovo.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://iknow.lenovo.com.cn/detail/dc_200017.html",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink