Improper access controls on several Android components in the Lenovo Service Framework application can be exploited to enable remote code execution.
lenovo service framework -