Vulnerability Details CVE-2019-6158
An internal product security audit of Lenovo XClarity Administrator (LXCA) discovered HTTP proxy credentials being written to a log file in clear text. This only affects LXCA when HTTP proxy credentials have been configured. This affects LXCA versions 2.0.0 to 2.3.x.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.2%
CVSS Severity
CVSS v3 Score 8.7
CVSS v2 Score 4.3
References
Products affected by CVE-2019-6158
-
cpe:2.3:a:lenovo:xclarity_administrator:2.0.0
-
cpe:2.3:a:lenovo:xclarity_administrator:2.1.0
-
cpe:2.3:a:lenovo:xclarity_administrator:2.2.0
-
cpe:2.3:a:lenovo:xclarity_administrator:2.3.0