CVE-2018-9072

Summary

In versions prior to 5.5, LXCI for VMware allows an authenticated user to download any system file due to insufficient input sanitization during file downloads.

Affected Software

VendorProductVersion RangeStatus
LenovoLXCI for VMwareunspecified < 5.5affected

Weaknesses

  • Privilege escalation

ADP Enrichment

CVE Program Container

Additional References

References