CVE-2026-6282
Severity CVSS v4.0:
HIGH
Type:
CWE-22
Path Traversal
Publication date:
13/05/2026
Last modified:
13/05/2026
Description
A potential improper file path validation vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authenticated user to move or access files belonging to other users on the same device.
Impact
Base Score 4.0
8.60
Severity 4.0
HIGH
Base Score 3.x
8.10
Severity 3.x
HIGH



