CVE-2024-45103

MEDIUM

LXCA - Privilege Escalation

Title source: llm

Description

A valid, authenticated LXCA user may be able to unmanage an LXCA managed device in through the LXCA web interface without sufficient privileges.

References (1)

Scores

CVSS v3 4.3
EPSS 0.0016
EPSS Percentile 37.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Classification

CWE
CWE-282
Status published

Affected Products (1)

lenovo/xclarity_administrator < 4.1.0

Timeline

Published Sep 13, 2024
Tracked Since Feb 18, 2026