CVE-2024-45103

A valid, authenticated LXCA user may be able to unmanage an LXCA managed device in through the LXCA web interface without sufficient privileges.
References
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:lenovo:xclarity_administrator:*:*:*:*:*:*:*:*
OR cpe:2.3:a:emc:vmware:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:o:redhat:kernel-based_virtual_machine:-:*:*:*:*:*:*:*

History

19 Sep 2024, 01:50

Type Values Removed Values Added
CWE NVD-CWE-noinfo
First Time Emc vmware
Lenovo
Microsoft
Lenovo xclarity Administrator
Emc
Redhat
Redhat kernel-based Virtual Machine
Microsoft windows
Summary
  • (es) Es posible que un usuario LXCA válido y autenticado pueda cancelar la administración de un dispositivo administrado por LXCA a través de la interfaz web de LXCA sin privilegios suficientes.
CPE cpe:2.3:o:redhat:kernel-based_virtual_machine:-:*:*:*:*:*:*:*
cpe:2.3:a:lenovo:xclarity_administrator:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:a:emc:vmware:-:*:*:*:*:*:*:*
References () https://support.lenovo.com/us/en/product_security/LEN-154748 - () https://support.lenovo.com/us/en/product_security/LEN-154748 - Vendor Advisory

13 Sep 2024, 18:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-13 18:15

Updated : 2024-09-19 01:50


NVD link : CVE-2024-45103

Mitre link : CVE-2024-45103

CVE.ORG link : CVE-2024-45103


JSON object : View

Products Affected

redhat

  • kernel-based_virtual_machine

microsoft

  • windows

emc

  • vmware

lenovo

  • xclarity_administrator
CWE
NVD-CWE-noinfo CWE-282

Improper Ownership Management