8.4 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
39.7%
A valid, authenticated user may be able to trigger a denial of service of the XCC web user interface or other undefined behavior through a format string injection vulnerability in a web interface API.
support.lenovo.com/us/en/product_security/LEN-99936