CVE-2019-6182 is a vulnerability in Lenovo Xclarity Administrator
Published on September 3, 2019

A stored CSV Injection vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.5.0 that could allow an administrative user to store malformed data in LXCA Jobs and Event Log data, that could result in crafted formulas stored in an exported CSV file. The crafted formula is not executed on LXCA itself.

NVD

Products Associated with CVE-2019-6182

Want to know whenever a new CVE is published for Lenovo Xclarity Administrator? stack.watch will email you.

Lenovo Xclarity Administrator

Affected Versions

Lenovo XClarity Administrator (LXCA):

Version unspecified and below 2.5.0 is affected.

Exploit Probability

EPSS

0.22%

Percentile

44.01%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-6182 is a vulnerability in Lenovo Xclarity AdministratorPublished on September 3, 2019

Products Associated with CVE-2019-6182

Affected Versions

Exploit Probability

CVE-2019-6182 is a vulnerability in Lenovo Xclarity Administrator
Published on September 3, 2019