CVE-2026-6282

Name of the Vulnerable Software and Affected Versions Lenovo Personal Cloud Storage (affected versions not specified)

Description Improper file path validation allows a remote authenticated user to move or access files belonging to other users on the same device. This is a path traversal issue, which occurs when an application uses user-supplied input to construct a pathname that is intended to be within a restricted directory, but fails to properly sanitize the input, allowing access to files outside that directory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.