CVE-2017-3742
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2017-3742
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
In Lenovo Connect2 versions earlier than 4.2.5.4885 for Windows and 4.2.5.3071 for Android, when an ad-hoc connection is made between two systems for the purpose of sharing files, the password for this ad-hoc connection will be stored in a user-readable location. An attacker with read access to the user's contents could connect to the Connect2 hotspot and see the contents of files while they are being transferred between the two systems.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Lenovo Connect2 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Lenovo Connect2是中国联想(Lenovo)公司的一款免费的用于计算机和手机之间内容互传的管理工具。 Lenovo Connect2中存在安全漏洞,该漏洞源于程序将ad-hoc连接密码储存在用户可读取的位置。攻击者可利用该漏洞连接到Connect2热点上,并查看两个系统之间传递的文件内容。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Lenovo Group Ltd. | Lenovo Connect2 | Earlier than 4.2.5.4885 for Windows and 4.2.5.3071 for Android. | - |
II. Public POCs for CVE-2017-3742
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2017-3742
请登录查看更多情报信息。
- https://support.lenovo.com/us/en/product_security/LEN-14398x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2017-3742
IV. Related Vulnerabilities
V. Comments for CVE-2017-3742
No comments yet