CVE-2019-6158

Summary

An internal product security audit of Lenovo XClarity Administrator (LXCA) discovered HTTP proxy credentials being written to a log file in clear text. This only affects LXCA when HTTP proxy credentials have been configured. This affects LXCA versions 2.0.0 to 2.3.x.

Affected Software

VendorProductVersion RangeStatus
LenovoLenovo XClarity Administratorunspecified < 2.3.xaffected
LenovoLenovo XClarity Administratorunspecified < 2.0.0unaffected

Weaknesses

  • Information disclosure

ADP Enrichment

CVE Program Container

Additional References

References