Описание
An information disclosure vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.6.6 that could allow unauthenticated access to some configuration files which may contain usernames, license keys, IP addresses, and encrypted password hashes.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.6.6 (исключая)
cpe:2.3:a:lenovo:xclarity_administrator:*:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00343
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-284
CWE-200
Связанные уязвимости
github
больше 3 лет назад
An information disclosure vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.6.6 that could allow unauthenticated access to some configuration files which may contain usernames, license keys, IP addresses, and encrypted password hashes.
EPSS
Процентиль: 56%
0.00343
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-284
CWE-200