{“lastseen”:””,”description”:”A potential improper file path validation vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authenticated user to move or access files belonging to other users on the same device.”,”published”:”2026-05-13T14:15:15.311Z”,”modified”:”2026-05-13T14:15:15.311Z”,”type”:”cve”,”title”:”CVE-2026-6282″,”source”:”lenovo”,”references”:”https:\/\/iknow.lenovo.com.cn\/detail\/440274\\nhttps:\/\/pc.lenovo.com.cn\/tips\/Ann\/t1_eol.html”,”id”:”CVE-2026-6282″,”bulletinFamily”:””,”cwe”:[“CWE-22″],”cvelist”:null,”sourceData”:”Lenovo Personal Cloud T2s 0\\nLenovo Personal Cloud T2Pro 0\\nLenovo Personal Cloud X1s 0\\nLenovo Home Storage Hub T20 0\\nLenovo Home Storage Hub X20 0\\nLenovo Personal Cloud T1 0\\nLenovo Personal Cloud A1 0\\nLenovo Personal Cloud A1s 0\\nLenovo Personal Cloud T2 0\\nLenovo Personal Cloud X1 0″,”sourceHref”:””,”cvss”:{“score”:8.6,”severity”:”HIGH”,”vector”:”CVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:L\/UI:N\/VC:H\/VI:H\/VA:N\/SC:N\/SI:N\/SA:N”,”version”:”4.0″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Personal Cloud T2s”,”version”:”0″,”vendor”:”Lenovo”,”ai_description”:”Improper file path validation vulnerability in Lenovo Personal Cloud Storage devices allowing remote authenticated users to move or access files belonging to other users”,”ai_severity”:”High”,”ai_vendor”:”Lenovo”,”ai_product”:”Personal Cloud Storage”,”ai_version”:”0″,”ai_score”:8.6}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”A potential improper file path validation vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authenticated user to move…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,81,12,15,13,7,11,5],"class_list":["post-54119","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-86","tag-exploit","tag-high","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n