mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-05-28 01:02:55 +00:00
63 lines
2.0 KiB
JSON
63 lines
2.0 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "psirt@lenovo.com",
|
|
"DATE_PUBLIC": "2017-11-30T00:00:00",
|
|
"ID": "CVE-2017-3764",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "xClarity Administrator",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "Earlier than 1.4.0"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "Lenovo Group Ltd."
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "A vulnerability was identified in Lenovo XClarity Administrator (LXCA) before 1.4.0 where LXCA user account names may be exposed to unauthenticated users with access to the LXCA web user interface. No password information of the user accounts is exposed."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Unauthenticated User Enumeration"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "https://support.lenovo.com/us/en/product_security/LEN-16335",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://support.lenovo.com/us/en/product_security/LEN-16335"
|
|
}
|
|
]
|
|
}
|
|
} |