Vulnerabilities > Lenovo > Xclarity Administrator > 2.5.0

DATE CVE VULNERABILITY TITLE RISK
2020-02-14 CVE-2019-19757 Cross-site Scripting vulnerability in Lenovo Xclarity Administrator
An internal product security audit of Lenovo XClarity Administrator (LXCA) discovered a Document Object Model (DOM) based cross-site scripting vulnerability in versions prior to 2.6.6 that could allow JavaScript code to be executed in the user's web browser if a specially crafted link is visited.
network
low complexity
lenovo CWE-79
5.4