CVE-2018-9075

HIGH

LenovoEMC Firmware < 4.1.402.34662 - OS Command Injection via PersonalCloud Client Password Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-9075. PoCs published by beverlymiller818.

AI-analyzed exploit summary The repository contains only a minimal README.md with placeholder text and no functional exploit code or technical details. It lacks any proof-of-concept or vulnerability analysis.

Description

For some Iomega, Lenovo, LenovoEMC NAS devices versions 4.1.402.34662 and earlier, when joining a PersonalCloud setup, an attacker can craft a command injection payload using backtick "``" characters in the client:password parameter. As a result, arbitrary commands may be executed as the root user. The attack requires a value __c and iomega parameter.

Exploits (1)

nomisec STUB

by beverlymiller818 · poc

https://github.com/beverlymiller818/cve-2018-9075

View Code ZIP pw:eip

The repository contains only a minimal README.md with placeholder text and no functional exploit code or technical details. It lacks any proof-of-concept or vulnerability analysis.

Classification

Stub 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: unknown

No auth needed

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

https://support.lenovo.com/us/en/solutions/LEN-24224

Scores

CVSS v3 8.1

EPSS 0.2551

EPSS Percentile 96.3%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-78

Status published

Products (1)

lenovo/lenovoemc_firmware < 4.1.402.34662

Published Sep 28, 2018

Tracked Since Feb 18, 2026