exploitDog

GHSA-w689-4q7p-cvmx

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

In Lenovo xClarity Administrator versions earlier than 2.1.0, an authenticated LXCA user may abuse a web API debug call to retrieve the credentials for the System Manager user.

In Lenovo xClarity Administrator versions earlier than 2.1.0, an authenticated LXCA user may abuse a web API debug call to retrieve the credentials for the System Manager user.

Ссылки

EPSS

Процентиль: 56%

0.00336

Низкий

8.8 High

CVSS3

CVE ID

Связанные уязвимости

CVE-2018-9064

CVSS3: 8.8

nvd

больше 7 лет назад

In Lenovo xClarity Administrator versions earlier than 2.1.0, an authenticated LXCA user may abuse a web API debug call to retrieve the credentials for the System Manager user.

EPSS

Процентиль: 56%

0.00336

Низкий

8.8 High

CVSS3

CVE ID