Log files generated by Lenovo XClarity Administrator (LXCA) versions earlier than 1.2.2 may contain user credentials in a non-secure, clear text form that could be viewed by a non-privileged user.
oryginał ENCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HLenovo Xclarity Administrator
APPLenovo≤ 1.2.1
Powiązane podatności
OpenSLP releases in the 1.0.2 and 1.1.0 code streams have a heap-related memory corruption issue which may man...
An unauthenticated XML external entity injection (XXE) vulnerability exists in LXCA's Common Information Model...
A valid, authenticated LXCA user with elevated privileges may be able to execute command injections through cr...
A valid, authenticated LXCA user may be able to gain unauthorized access to events and other data stored in LX...
An internal product security audit of Lenovo XClarity Administrator (LXCA) discovered Windows OS credentials, ...