Headline
CVE-2019-6181: LXCA and LXCI Insufficient Input Validation - Lenovo Support DE
A reflected cross-site scripting (XSS) vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.5.0 that could allow a crafted URL, if visited, to cause JavaScript code to be executed in the user’s web browser. The JavaScript code is not executed on LXCA itself.
About Lenovo
- Our Company
- News
- Investor Relations
- Sustainability
- Product Compliance
- Product Security
- Lenovo Open Source
- Legal Information
- Jobs at Lenovo
Shop
- Laptops & Ultrabooks
- Tablets
- Desktops & All-in-Ones
- Workstations
- Accessories & Software
- Servers
- Storage
- Networking
- Laptop Deals
- Outlet
Support
- Drivers & Software
- How To’s
- Warranty Lookup
- Parts Lookup
- Contact Us
- Repair Status Check
- Imaging & Security Resources
Resources
- Where to Buy
- Shopping Help
- Sales Order Status
- Product Specifications (PSREF)
- Forums
- Registration
- Product Accessibility
- Environmental Information
- Gaming Community
- LenovoEDU Community
- LenovoPRO Community
© Lenovo.
| | | |