Latest Vulnerabilities Affecting Lenovo products

Date	CVE	Title	CVSS
2019-05-03	CVE-2019-6158	Information Exposure Through Log Files vulnerability in Lenovo Xclarity Administrator 2.0.0/2.1.0	Medium
2019-04-22	CVE-2019-6157	Information Exposure Through Log Files vulnerability in IBM and Lenovo products	Medium
2019-04-10	CVE-2019-6156	Security Features vulnerability in Lenovo and products	Low
2019-04-10	CVE-2019-6154	Untrusted Search Path vulnerability in Lenovo and products	Medium
2019-03-18	CVE-2019-6149	Unquoted Search Path or Element vulnerability in Lenovo Dynamic Power Reduction and Thinkpad X1 Carbon	High
2019-01-24	CVE-2018-16098	Unquoted Search Path or Element vulnerability in Lenovo and products	High
2018-11-30	CVE-2018-16093	Unrestricted Upload of File with Dangerous Type vulnerability in Lenovo Xclarity Integrator 5.5	Medium
2018-11-30	CVE-2018-16097	Unrestricted Upload of File with Dangerous Type vulnerability in Lenovo Xclarity Integrator 3.5/5.5	Medium
2018-11-30	CVE-2018-9072	Input Validation vulnerability in Lenovo Xclarity Integrator 5.5	Medium
2018-11-27	CVE-2018-16089	Command Injection vulnerability in Lenovo and products	High
2018-11-27	CVE-2018-16090	Command Injection vulnerability in Lenovo and products	Medium
2018-11-27	CVE-2018-16091	Buffer Errors vulnerability in Lenovo and products	Medium
2018-11-27	CVE-2018-16092	Credentials Management vulnerability in Lenovo and products	Medium
2018-11-27	CVE-2018-16094	Buffer Errors vulnerability in Lenovo and products	Medium
2018-11-27	CVE-2018-16096	Cross-Site Scripting (XSS) vulnerability in Lenovo and products	Medium

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.