CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-7954

Malware in sbrugna...

6.5CVSS6.6AI score0.00121EPSS

Exploits0References2

NVD•added 2019/09/03 7:15 p.m.•15 views

CVE-2019-6179

An XML External Entity XXE processing vulnerability was reported in Lenovo XClarity Administrator LXCA prior to version 2.5.0 , Lenovo XClarity Integrator LXCI for Microsoft System Center prior to version 7.7.0, and Lenovo XClarity Integrator LXCI for VMWare vCenter prior to version 6.1.0 that...

7.5CVSS5.7AI score0.00293EPSS

Exploits0References1

Prion•added 2019/09/03 7:15 p.m.•18 views

Xxe

5CVSS7.2AI score0.00293EPSS

Exploits0References1Affected Software2

Cvelist•added 2019/09/03 6:50 p.m.•14 views

CVE-2019-6179

5.3CVSS7.2AI score0.00293EPSS

Exploits0References1

CVE•added 2019/09/03 6:50 p.m.•133 views

CVE-2019-6179

CVE-2019-6179 is an XML External Entity (XXE) processing vulnerability found in Lenovo XClarity Administrator (LXCA) before 2.5.0, Lenovo XClarity Integrator (LXCI) for Microsoft System Center before 7.7.0, and LXCI for VMware vCenter before 6.1.0. The issue, as described in Lenovo’s advisory, co...

7.5CVSS7.2AI score0.00293EPSS

Exploits0References1Affected Software2

Lenovo•added 2019/08/30 3:29 p.m.•27 views

LXCA and LXCI Insufficient Input Validation - US

Lenovo Security Advisory: LEN-27805 Potential Impact: Information disclosure, code execution Severity: Medium Scope of Impact: Lenovo-specific CVE Identifier: CVE-2019-6179, CVE-2019-6180, CVE-2019-6181, CVE-2019-6182 Summary Description: Vulnerabilities reported in Lenovo XClarity Administrator...

5CVSS0.8AI score0.00293EPSS

Exploits0

ATTACKERKB•added 2018/11/30 2:29 p.m.•0 views

CVE-2018-9072

In versions prior to 5.5, LXCI for VMware allows an authenticated user to download any system file due to insufficient input sanitization during file downloads...

6.5CVSS5.5AI score0.00311EPSS

Exploits0References2

Prion•added 2018/11/30 2:29 p.m.•10 views

Input validation

In versions prior to 5.5, LXCI for VMware allows an authenticated user to download any system file due to insufficient input sanitization during file downloads...

4CVSS6.3AI score0.00311EPSS

Exploits0References1Affected Software1

NVD•added 2018/11/30 2:29 p.m.•10 views

CVE-2018-16097

LXCI for VMware versions prior to 5.5 and LXCI for Microsoft System Center versions prior to 3.5, allow an authenticated user to write to any system file due to insufficient sanitization during the upload of a certificate...

6.5CVSS6.4AI score0.00121EPSS

Exploits0References1

Prion•added 2018/11/30 2:29 p.m.•12 views

Design/Logic Flaw

4CVSS6.3AI score0.00121EPSS

Exploits0References1Affected Software1

NVD•added 2018/11/30 2:29 p.m.•9 views

CVE-2018-9072

In versions prior to 5.5, LXCI for VMware allows an authenticated user to download any system file due to insufficient input sanitization during file downloads...

6.5CVSS6.4AI score0.00311EPSS

Exploits0References1

NVD•added 2018/11/30 2:29 p.m.•14 views

CVE-2018-16093

In versions prior to 5.5, LXCI for VMware allows an authenticated user to write to any system file due to insufficient sanitization during the upload of a backup file...

6.5CVSS6.5AI score0.0022EPSS

Exploits0References1

OSV•added 2018/11/30 2:29 p.m.•0 views

CVE-2018-9072

In versions prior to 5.5, LXCI for VMware allows an authenticated user to download any system file due to insufficient input sanitization during file downloads...

6.5CVSS5.8AI score

Exploits0References1

OSV•added 2018/11/30 2:29 p.m.•1 views

CVE-2018-16093

In versions prior to 5.5, LXCI for VMware allows an authenticated user to write to any system file due to insufficient sanitization during the upload of a backup file...

6.5CVSS5.8AI score0.0022EPSS

Exploits0References1

CVE•added 2018/11/30 2:0 p.m.•44 views

CVE-2018-9072

CVE-2018-9072 affects LXCI for VMware (versions prior to 5.5). Authenticated users can download any system file due to insufficient input sanitization during file downloads. The NVD entry confirms the flaw and impact; Lenovo advisory LEN-23800 specifies remediation: update to LXCI for VMware vers...

6.5CVSS6.4AI score0.00311EPSS

Exploits0References1Affected Software1

Cvelist•added 2018/11/30 2:0 p.m.•8 views

CVE-2018-16093 LXCI for VMware

In versions prior to 5.5, LXCI for VMware allows an authenticated user to write to any system file due to insufficient sanitization during the upload of a backup file...

6.5AI score0.0022EPSS

Exploits0References1

CVE•added 2018/11/30 2:0 p.m.•48 views

CVE-2018-16097

Lenovo XClarity Integrator (LXCI) for VMware and LXCI for Microsoft System Center are affected. Versions prior to 5.5 (VMware) and 3.5 (System Center) allow an authenticated user to write to arbitrary system files due to insufficient validation during certificate upload. The CVE entry CVE-2018-16...

6.5CVSS6.4AI score0.00121EPSS

Exploits0References1Affected Software1

Cvelist•added 2018/11/30 2:0 p.m.•9 views

CVE-2018-16097 LXCI for VMware and LXCI for Microsoft System Center

6.4AI score0.00121EPSS

Exploits0References1

CVE•added 2018/11/30 2:0 p.m.•46 views

CVE-2018-16093

CVE-2018-16093 affects Lenovo XClarity Integrator for VMware prior to version 5.5. An authenticated user can write to arbitrary system files due to insufficient filtering during backup file uploads. CNVD/NVD entries corroborate this behavior. Remediation: upgrade LXCI for VMware to version 5.5 or...

6.5CVSS6.4AI score0.0022EPSS

Exploits0References1Affected Software1

Cvelist•added 2018/11/30 2:0 p.m.•12 views

CVE-2018-9072 LXCI for VMware

In versions prior to 5.5, LXCI for VMware allows an authenticated user to download any system file due to insufficient input sanitization during file downloads...

6.4AI score0.00311EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by