High severity8.8NVD Advisory· Published Sep 22, 2017· Updated May 13, 2026

CVE-2017-3770

Description

Privilege escalation vulnerability in LXCA versions earlier than 1.3.2 where an authenticated user may be able to abuse certain web interface functionality to execute privileged commands within the underlying LXCA operating system.

Affected products

Lenovo/Xclarity Administrator
cpe:2.3:a:lenovo:xclarity_administrator:*:*:*:*:*:*:*:*
Range: <=1.3.1
Lenovo Group Ltd./Lenovo XClarity Administrator (LXCA)v5
Range: Earlier than 1.3.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.lenovo.com/us/en/product_security/LEN-16333nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000