3 matches found
CVE-2018-9064
In Lenovo xClarity Administrator versions earlier than 2.1.0, an authenticated LXCA user may abuse a web API debug call to retrieve the credentials for the System Manager user...
CVE-2018-9064
CVE-2018-9064 affects Lenovo xClarity Administrator (LXCA) before version 2.1.0. An authenticated LXCA user can abuse a web API debug call to retrieve the credentials for the System Manager user. Lenovo’s advisory also notes potential privilege escalation and, in limited cases, privileged command...
XClarity Administrator (LXCA) API Vulnerabilities - Lenovo Support US
No description provided...