In versions prior to 5.5, LXCI for VMware allows an authenticated user to write to any system file due to insufficient sanitization during the upload of a backup file.
References
Link | Resource |
---|---|
https://support.lenovo.com/us/en/solutions/LEN-23800 | Patch Vendor Advisory |
https://support.lenovo.com/us/en/solutions/LEN-23800 | Patch Vendor Advisory |
Configurations
History
21 Nov 2024, 03:52
Type | Values Removed | Values Added |
---|---|---|
References | () https://support.lenovo.com/us/en/solutions/LEN-23800 - Patch, Vendor Advisory |
Information
Published : 2018-11-30 14:29
Updated : 2024-11-21 03:52
NVD link : CVE-2018-16093
Mitre link : CVE-2018-16093
CVE.ORG link : CVE-2018-16093
JSON object : View
Products Affected
lenovo
- xclarity_integrator
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type