Unrated severityNVD Advisory· Published Sep 3, 2019· Updated Sep 17, 2024
CVE-2019-6180
CVE-2019-6180
Description
A stored cross-site scripting (XSS) vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.5.0 that could allow an administrative user to cause JavaScript code to be stored in LXCA which may then be executed in the user's web browser. The JavaScript code is not executed on LXCA itself.
Affected products
2<2.5.0+ 1 more
- (no CPE)range: <2.5.0
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
1- support.lenovo.com/solutions/LEN-27805mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.