CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-6187

A stored CSV Injection vulnerability was reported in Lenovo XClarity Controller (XCC) that could allow an administrative or other appropriately permissioned user to store malformed data in certain XCC server informational fields, that could result in crafted formulas being stored in an exported CSV file. The crafted formula is not executed on XCC itself and has no effect on the server.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.2%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.0

References

Products affected by CVE-2019-6187

Lenovo » Xclarity Controller » Version: N/A

cpe:2.3:a:lenovo:xclarity_controller:-
Lenovo » Xclarity Controller » Version: 1.10_tgbt12q

cpe:2.3:a:lenovo:xclarity_controller:1.10_tgbt12q
Lenovo » Xclarity Controller » Version: 1.51_tgbt24l

cpe:2.3:a:lenovo:xclarity_controller:1.51_tgbt24l
Lenovo » Xclarity Controller » Version: 1.71_psi328n

cpe:2.3:a:lenovo:xclarity_controller:1.71_psi328n
Lenovo » Xclarity Controller » Version: 2.14_psi338i

cpe:2.3:a:lenovo:xclarity_controller:2.14_psi338i
Lenovo » Xclarity Controller » Version: 2.32_psi342n

cpe:2.3:a:lenovo:xclarity_controller:2.32_psi342n
Lenovo » Xclarity Controller » Version: 3.01_tei392o

cpe:2.3:a:lenovo:xclarity_controller:3.01_tei392o
Lenovo » Xclarity Controller » Version: 3.08_cdi340v

cpe:2.3:a:lenovo:xclarity_controller:3.08_cdi340v
Lenovo » Xclarity Controller » Version: 3.41_tei382m

cpe:2.3:a:lenovo:xclarity_controller:3.41_tei382m
Lenovo » Xclarity Controller » Version: 4.40_tei3b2p

cpe:2.3:a:lenovo:xclarity_controller:4.40_tei3b2p
Lenovo » Xclarity Controller » Version: 4.83_tei3c0n

cpe:2.3:a:lenovo:xclarity_controller:4.83_tei3c0n
Lenovo » Xclarity Controller » Version: 6.00_cdi370q

cpe:2.3:a:lenovo:xclarity_controller:6.00_cdi370q
Lenovo » Xclarity Controller » Version: 7.22_cdi382o

cpe:2.3:a:lenovo:xclarity_controller:7.22_cdi382o
Lenovo » Xclarity Controller » Version: cdi340m

cpe:2.3:a:lenovo:xclarity_controller:cdi340m
Lenovo » Xclarity Controller » Version: g1i312

cpe:2.3:a:lenovo:xclarity_controller:g1i312
Lenovo » Xclarity Controller » Version: psi328m

cpe:2.3:a:lenovo:xclarity_controller:psi328m
Lenovo » Thinksystem Sr670 » Version: N/A

cpe:2.3:h:lenovo:_thinksystem_sr670:-
Lenovo » Thinkagile 7d1h » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7d1h:-
Lenovo » Thinkagile 7x82 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7x82:-
Lenovo » Thinkagile 7x83 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7x83:-
Lenovo » Thinkagile 7y11 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7y11:-
Lenovo » Thinkagile 7y12 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7y12:-
Lenovo » Thinkagile 7y13 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7y13:-
Lenovo » Thinkagile 7y14 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7y14:-
Lenovo » Thinkagile 7y88 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7y88:-
Lenovo » Thinkagile 7y90 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7y90:-
Lenovo » Thinkagile 7y92 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7y92:-
Lenovo » Thinkagile 7y93 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7y93:-
Lenovo » Thinkagile 7y94 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7y94:-
Lenovo » Thinkagile 7z03 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7z03:-
Lenovo » Thinkagile 7z04 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7z04:-
Lenovo » Thinkagile 7z05 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7z05:-
Lenovo » Thinkagile 7z06 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7z06:-
Lenovo » Thinkagile 7z07 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7z07:-
Lenovo » Thinkagile 7z20 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_7z20:-
Lenovo » Thinkagile Yx84 » Version: N/A

cpe:2.3:h:lenovo:thinkagile_yx84:-
Lenovo » Thinksystem Sd530 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sd530:-
Lenovo » Thinksystem Sd650 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sd650:-
Lenovo » Thinksystem Sn550 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sn550:-
Lenovo » Thinksystem Sn850 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sn850:-
Lenovo » Thinksystem Sr150 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sr150:-
Lenovo » Thinksystem Sr158 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sr158:-
Lenovo » Thinksystem Sr250 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sr250:-
Lenovo » Thinksystem Sr258 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sr258:-
Lenovo » Thinksystem Sr530 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sr530:-
Lenovo » Thinksystem Sr550 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sr550:-
Lenovo » Thinksystem Sr570 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sr570:-
Lenovo » Thinksystem Sr590 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sr590:-
Lenovo » Thinksystem Sr630 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sr630:-
Lenovo » Thinksystem Sr650 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sr650:-
Lenovo » Thinksystem Sr850 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sr850:-
Lenovo » Thinksystem Sr860 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sr860:-
Lenovo » Thinksystem Sr950 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_sr950:-
Lenovo » Thinksystem St250 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_st250:-
Lenovo » Thinksystem St258 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_st258:-
Lenovo » Thinksystem St550 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_st550:-
Lenovo » Thinksystem St558 » Version: N/A

cpe:2.3:h:lenovo:thinksystem_st558:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-6187

Products

Pricing

Contact Us