Lucene search
PRIOn knowledge basePRION:CVE-2019-19757HistoryFeb 14, 2020 - 5:15 p.m.
Cross site scripting
2020-02-1417:15:00
PRIOn knowledge base
www.prio-n.com
4
An internal product security audit of Lenovo XClarity Administrator (LXCA) discovered a Document Object Model (DOM) based cross-site scripting vulnerability in versions prior to 2.6.6 that could allow JavaScript code to be executed in the user’s web browser if a specially crafted link is visited. The JavaScript code is executed on the user’s system, not executed on LXCA itself.
| CPE | Name | Operator | Version |
|---|---|---|---|
| xclarity_administrator | lt | 2.6.6 |
Related
cvelist
cvelist
CVE-2019-19757
2020-02-14 00:00:00
nvd
nvd
CVE-2019-19757
2020-02-14 17:15:11
cve
cve
CVE-2019-19757
2020-02-14 17:15:11
lenovo
lenovo
Lenovo XClarity Administrator (LXCA) Vulnerabilities - Lenovo Support US
2020-02-08 22:55:14
Lenovo XClarity Administrator (LXCA) Vulnerabilities - Lenovo Support US
2020-02-08 22:55:14