Description
The Lenovo Help Android app versions earlier than 6.1.2.0327 had insufficient access control for some functions which, if exploited, could have led to exposure of approximately 400 email addresses and 8,500 IMEI.
References (1)
Core 1
Core References
Mitigation, Vendor Advisory x_refsource_confirm
https://support.lenovo.com/us/en/solutions/LEN-21561
Scores
CVSS v3
7.5
EPSS
0.0032
EPSS Percentile
55.4%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
Status
published
Products (1)
lenovo/lenovo_help
< 6.1.2.0327
Published
Jul 13, 2018
Tracked Since
Feb 18, 2026