Vulnerabilities > CVE-2021-3615 - Unspecified vulnerability in Lenovo products

CVSS 6.8 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

lenovo

NVD

Published: 2021-08-17

Updated: 2022-04-25

Summary

A vulnerability was reported in Lenovo Smart Camera X3, X5, and C2E that could allow code execution if a specific file exists on the attached SD card. This vulnerability is the same as CNVD-2021-45262.

Vulnerable Configurations

Part	Description	Count
OS	Lenovo Lenovo Smart Camera C2E Firmware * Lenovo Smart Camera X3 Firmware * Lenovo Smart Camera X5 Firmware *	3
Hardware	Lenovo Lenovo Smart Camera C2E - Lenovo Smart Camera X3 - Lenovo Smart Camera X5 -	3

References

https://iknow.lenovo.com.cn/detail/dc_198417.html
https://www.cnvd.org.cn/flaw/show/CNVD-2021-45262