Description
A potential vulnerability was reported in some Lenovo Tablets that could allow a local authenticated user or application to gain access to sensitive device specific information.
Problem types
CWE-256: Plaintext Storage of a Password
Product status
Any version before TB330FU_ROW_OPEN_USER_V5_V_ZUI_17.0.274_ST_251011
Any version before TB330XU_ROW_OPEN_USER_V5_V_ZUI_17.0.235_ST_251011
Any version before TB330FU_ROW_OPEN_USER_V5_V_ZUI_17.0.274_ST_251011
Any version before TB330XU_ROW_OPEN_USER_V5_V_ZUI_17.0.235_ST_251011
Any version before 17.0.04.184
Any version before 17.0.10.457
Any version before 17.0.10.069
Any version before 17.0.10.065
Any version before 17.0.12.203
Any version before TB300FU_USR_S101112_250919_MP1V1111_ROW
Any version before TB300XU_USR_S101103_250919_MP1V1111_ROW
Any version before 17.0.104
Any version before 16.0.783
Any version before TB300FU_USR_S101112_250919_MP1V1111_ROW
Any version before TB300XU_USR_S101103_250919_MP1V1111_ROW
Any version before TB310FU_USR_S000912_2510022135_mp1V969_ROW
Any version before TB310XU_USR_S000913_2510021921_mp1V969_ROW
Any version before TB350XU_USER_S230920_2508120308_MP_ROW
Any version before TB350FU_USER_S230917_2508090248_MP_ROW
Any version before TB370FU_ROW_OPEN_USER_V5_V_ZUI_17.0.187_ST_250817
Any version before TB372FC_ROW_OPEN_USER_V5_V_ZUI_17.0.116_ST_250822
Any version before 17.0.30.303
Any version before 17.0.10.213
Any version before 17.0.10.213
Any version before 17.5.10.035
Any version before 17.0.10.107
Credits
Lenovo thanks Tim Schumacher for reporting this issue.
References
support.lenovo.com/us/en/product_security/LEN-202383
