CVE-2024-45103 MEDIUM

CVE-2024-45103

Vendor Lenovo
Product XClarity Administrator
Weakness CWE-282
Published September 13, 2024
Last update September 13, 2024

CVSS base score

4.3/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

What the vulnerability does

01Description

A valid, authenticated LXCA user may be able to unmanage an LXCA managed device in through the LXCA web interface without sufficient privileges.

Key dates

02Disclosure timeline

September 13, 2024 CVE published
September 13, 2024 Record updated