Vulnerabilities > CVE-2024-45104 - Unspecified vulnerability in Lenovo Xclarity Administrator

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
low complexity
lenovo
NVD
Published: 2024-09-13
Updated: 2024-09-19

Summary

A valid, authenticated LXCA user without sufficient privileges may be able to use the device identifier to modify an LXCA managed device through a specially crafted web API call.

Vulnerable Configurations

Part Description Count
Application
Lenovo
20
Application
Emc
1
OS
Microsoft
1
OS
Redhat
1

References