A flaw was found in LemMinX in versions prior to 0.19.0. Insecure redirect could allow unauthorized access to sensitive information locally if LemMinX is run under a privileged user.

Exposure of Sensitive Information to an Unauthorized Actor in LemMinX