Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.0
Lenovo Filez: Data Stolen via Malicious Certificates on Network
CVE-2026-1068
Summary
The Lenovo Filez application doesn't properly check digital certificates, allowing a hacker to intercept data. This could lead to sensitive user information being stolen. Update Lenovo Filez to the latest version to fix this issue.
Original title
An improper certificate validation vulnerability was reported in the Lenovo Filez application that could allow a user capable of intercepting network traffic to obtain sensitive user data from the ...
Original description
An improper certificate validation vulnerability was reported in the Lenovo Filez application that could allow a user capable of intercepting network traffic to obtain sensitive user data from the application.
nvd CVSS3.1
5.3
nvd CVSS4.0
6.0
Vulnerability type
CWE-295
Improper Certificate Validation
Published: 11 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026