CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
EPSS
Percentile
16.8%
A valid, authenticated LXCA user without sufficient privileges may be able to use the device identifier to modify an LXCA managed device through a specially crafted web API call.
Vendor | Product | Version | CPE |
---|---|---|---|
lenovo | xclarity_administrator | * | cpe:2.3:a:lenovo:xclarity_administrator:*:*:*:*:*:*:*:* |
emc | vmware | - | cpe:2.3:a:emc:vmware:-:*:*:*:*:*:*:* |
microsoft | windows | - | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
redhat | kernel-based_virtual_machine | - | cpe:2.3:o:redhat:kernel-based_virtual_machine:-:*:*:*:*:*:*:* |