CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Lenovo: >> Xclarity Administrator >> 2.5.0 Security Vulnerabilities

CVE-2019-19757

An internal product security audit of Lenovo XClarity Administrator (LXCA) discovered a Document Object Model (DOM) based cross-site scripting vulnerability in versions prior to 2.6.6 that could allow JavaScript code to be executed in the user's web browser if a specially crafted link is visited. The JavaScript code is executed on the user's system, not executed on LXCA itself.

CVSS Score

5.4

EPSS Score

0.003

Published

2020-02-14

Page 2

Vulnerabilities

Vulnerable Software

Lenovo: >> Xclarity Administrator >> 2.5.0 Security Vulnerabilities

Products

Pricing

Contact Us