Vulnerability Details CVE-2019-6194
An XML External Entity (XXE) processing vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.6.6 that could allow information disclosure.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 49.6%
CVSS Severity
CVSS v3 Score 5.7
CVSS v2 Score 4.3
References
Products affected by CVE-2019-6194
-
cpe:2.3:a:lenovo:xclarity_administrator:1.0.1
-
cpe:2.3:a:lenovo:xclarity_administrator:1.0.3
-
cpe:2.3:a:lenovo:xclarity_administrator:1.1.0
-
cpe:2.3:a:lenovo:xclarity_administrator:1.1.1
-
cpe:2.3:a:lenovo:xclarity_administrator:1.2.1
-
cpe:2.3:a:lenovo:xclarity_administrator:1.2.2
-
cpe:2.3:a:lenovo:xclarity_administrator:1.3.0
-
cpe:2.3:a:lenovo:xclarity_administrator:1.3.1
-
cpe:2.3:a:lenovo:xclarity_administrator:1.3.2
-
cpe:2.3:a:lenovo:xclarity_administrator:1.4.0
-
cpe:2.3:a:lenovo:xclarity_administrator:2.0.0
-
cpe:2.3:a:lenovo:xclarity_administrator:2.1.0
-
cpe:2.3:a:lenovo:xclarity_administrator:2.2.0
-
cpe:2.3:a:lenovo:xclarity_administrator:2.3.0
-
cpe:2.3:a:lenovo:xclarity_administrator:2.4.0
-
cpe:2.3:a:lenovo:xclarity_administrator:2.5.0
-
cpe:2.3:a:lenovo:xclarity_administrator:2.6.0