CVE-2017-3764

A vulnerability was identified in Lenovo XClarity Administrator (LXCA) before 1.4.0 where LXCA user account names may be exposed to unauthenticated users with access to the LXCA web user interface. No password information of the user accounts is exposed.

Published: Nov 30, 2017
Updated: Apr 13, 2023
CVE: CVE-2017-3764
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
lenovo / xclarity_administrator	-	1.4.0

https://support.lenovo.com/us/en/product_security/LEN-16335

Vulnerability Database

289,784

CVE-2017-3764