CVE-2019-6187

🗓️ 20 Nov 2019 01:31:13Reported by lenovoType

Stored CSV Injection vulnerability in Lenovo XClarity Controller (XCC) allows malicious data to be stored in exported CSV fil

Reporter	Title	Published	Views	Family All 10
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in firmware supporting products shipped with IBM Clouf Pak System	1 Dec 202013:25	–	ibm
Circl	CVE-2019-6187	23 Feb 202420:16	–	circl
CNVD	Lenovo XClarity Controller CSV Injection Vulnerability	20 Nov 201900:00	–	cnvd
CVE	CVE-2019-6187	20 Nov 201901:31	–	cve
EUVD	EUVD-2019-15754	7 Oct 202500:30	–	euvd
Lenovo	Lenovo XClarity Controller (XCC) Stored CSV Injection - Lenovo Support US	14 Nov 201922:09	–	lenovo
Lenovo	Lenovo XClarity Controller (XCC) Stored CSV Injection - US	14 Nov 201922:09	–	lenovo
NVD	CVE-2019-6187	20 Nov 201902:15	–	nvd
OSV	CVE-2019-6187	20 Nov 201902:15	–	osv
Prion	Design/Logic Flaw	20 Nov 201902:15	–	prion

[
  {
    "product": "Lenovo XClarity Controller (XCC)",
    "vendor": "Lenovo",
    "versions": [
      {
        "lessThan": "TEI392M",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "CDI340M",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "G1I312",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "PSI328M",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
support	www.support.lenovo.com/solutions/LEN-29118

20 Nov 2019 01:31Current

6.6Medium risk

Vulners AI Score6.6

EPSS0.00859