Vulnerabilities > Lenovo

DATE	CVE	VULNERABILITY TITLE	RISK
2020-03-27	CVE-2015-8535	Path Traversal vulnerability in Lenovo Solution Center 3.3.0001 MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. local low complexity lenovo CWE-22	7.8
2020-03-27	CVE-2015-8534	Improper Privilege Management vulnerability in Lenovo Solution Center 3.3.0001 MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. local low complexity lenovo CWE-269	7.8
2020-03-27	CVE-2015-7336	Improper Verification of Cryptographic Signature vulnerability in Lenovo System Update MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. network low complexity lenovo CWE-347	7.5
2020-03-27	CVE-2015-7335	Race Condition vulnerability in Lenovo System Update MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. local high complexity lenovo CWE-362	7.0
2020-03-27	CVE-2015-7334	Improper Privilege Management vulnerability in Lenovo System Update MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. local low complexity lenovo CWE-269	7.8
2020-03-27	CVE-2015-7333	Improper Privilege Management vulnerability in Lenovo System Update MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. local low complexity lenovo CWE-269	7.8
2020-03-27	CVE-2015-5684	Classic Buffer Overflow vulnerability in Lenovo products MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. network low complexity lenovo CWE-120 critical	9.8
2020-03-13	CVE-2019-19756	Information Exposure Through Log Files vulnerability in Lenovo Xclarity Administrator 2.6.0 An internal product security audit of Lenovo XClarity Administrator (LXCA) discovered Windows OS credentials, used to perform driver updates of managed systems, being written to a log file in clear text. local low complexity lenovo CWE-532	6.0
2020-02-14	CVE-2019-6195	Improper Privilege Management vulnerability in Lenovo Xclarity Controller An authorization bypass exists in Lenovo XClarity Controller (XCC) versions prior to 3.08 CDI340V, 3.01 TEI392O, 1.71 PSI328N where a valid authenticated user with lesser privileges may be granted read-only access to higher-privileged information if 1) “LDAP Authentication Only with Local Authorization” mode is configured and used by XCC, and 2) a lesser privileged user logs into XCC within 1 minute of a higher privileged user logging out. network high complexity lenovo CWE-269	4.8
2020-02-14	CVE-2019-6194	XXE vulnerability in Lenovo Xclarity Administrator An XML External Entity (XXE) processing vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.6.6 that could allow information disclosure. local low complexity lenovo CWE-611	5.5

Vulnerabilities > Lenovo {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Lenovo"}]}

Vulnerabilities > Lenovo