Lenovo Update
3688Warning Date
Severity Level
Warning Number
Target Sector
4 September, 2019
● Medium
2019-394
All
Description:
Lenovo has released security update to address multiple vulnerabilities in the following products:
- Lenovo XClarity Administrator (LXCA)
- Lenovo XClarity Integrator (LXCI)
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Cross-site scripting attack (XSS).
- Execute arbitrary code.
Best practice and Recommendations:
The CERT team encourages users to update the affected products and to review Lenovo security advisory: https://support.lenovo.com/sa/en/product_security/len-27805