Описание
LXCI for VMware versions prior to 5.5 and LXCI for Microsoft System Center versions prior to 3.5, allow an authenticated user to write to any system file due to insufficient sanitization during the upload of a certificate.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.5 (исключая)Версия до 5.5 (исключая)
Одно из
cpe:2.3:a:lenovo:xclarity_integrator:*:*:*:*:*:scvmm:*:*
cpe:2.3:a:lenovo:xclarity_integrator:*:*:*:*:*:vcenter:*:*
EPSS
Процентиль: 32%
0.00121
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-434
Связанные уязвимости
CVSS3: 6.5
github
больше 3 лет назад
LXCI for VMware versions prior to 5.5 and LXCI for Microsoft System Center versions prior to 3.5, allow an authenticated user to write to any system file due to insufficient sanitization during the upload of a certificate.
EPSS
Процентиль: 32%
0.00121
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-434