Home

Description

A vulnerability was identified in the Lenovo Android Application, distributed exclusively on tablets in the Chinese market, that could allow a website visited by the built-in browser to overwrite system clipboard contents.

PUBLISHED Reserved 2026-04-30 | Published 2026-06-10 | Updated 2026-06-10 | Assigner lenovo




MEDIUM: 5.1CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

MEDIUM: 4.3CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Problem types

CWE-749: Exposed Dangerous Method or Function

Product status

Default status
unaffected

Any version before 7.3.8
affected

Credits

Lenovo thanks Xinfeng Chen 陈鑫峰 and Mingming Wan 万明明 from Geely Zero Lab at Geely Auto for reporting this vulnerability. finder

References

iknow.lenovo.com.cn/detail/440821 vendor-advisory

shop.lenovo.com.cn/ product

cve.org (CVE-2026-7516)

nvd.nist.gov (CVE-2026-7516)

Download JSON