Описание
Log files generated by Lenovo XClarity Administrator (LXCA) versions earlier than 1.2.2 may contain user credentials in a non-secure, clear text form that could be viewed by a non-privileged user.
Ссылки
- MitigationPatchVendor Advisory
- MitigationPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.2.1 (включая)
cpe:2.3:a:lenovo:xclarity_administrator:*:*:*:*:*:*:*:*
EPSS
Процентиль: 60%
0.00398
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-532
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
Log files generated by Lenovo XClarity Administrator (LXCA) versions earlier than 1.2.2 may contain user credentials in a non-secure, clear text form that could be viewed by a non-privileged user.
EPSS
Процентиль: 60%
0.00398
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-532