cbcvebase.
CVE-2019-6179
published 2019-09-03

CVE-2019-6179: An XML External Entity (XXE) processing vulnerability was reported in Lenovo XClarity Administrator (LXCA) prior to version 2.5.0 , Lenovo XClarity Integrator…

high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
An XML External Entity (XXE) processing vulnerability was reported in Lenovo XClarity Administrator (LXCA) prior to version 2.5.0 , Lenovo XClarity Integrator (LXCI) for Microsoft System Center prior to version 7.7.0, and Lenovo XClarity Integrator (LXCI) for VMWare vCenter prior to version 6.1.0 that could allow information disclosure.

Affected

6 ranges
VendorProductVersion rangeFixed in
lenovoxclarity_administrator< 2.5.02.5.0
lenovoxclarity_administrator>= unspecified < 2.5.02.5.0
lenovoxclarity_integrator< 6.1.06.1.0
lenovoxclarity_integrator< 7.7.07.7.0
lenovoxclarity_integrator_for_microsoft_system_center>= unspecified < 7.7.07.7.0
lenovoxclarity_integrator_for_vmware_vcenter>= unspecified < 6.1.06.1.0