CVE-2017-3763
First published: Fri Sep 22 2017(Updated: )
An attacker who obtains access to the location where the LXCA file system is stored may be able to access credentials of local LXCA accounts in LXCA versions earlier than 1.3.2.
Credit: psirt@lenovo.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Lenovo XClarity Administrator | <=1.3.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-3763?
CVE-2017-3763 has been classified as having a high severity due to the potential exposure of sensitive credentials.
How do I fix CVE-2017-3763?
To mitigate CVE-2017-3763, upgrade your Lenovo XClarity Administrator to version 1.3.2 or later.
Who is affected by CVE-2017-3763?
CVE-2017-3763 affects users of Lenovo XClarity Administrator versions earlier than 1.3.2.
What data can be exposed in CVE-2017-3763?
CVE-2017-3763 can expose credentials of local LXCA accounts if an attacker gains access to the file system.
Is there a workaround for CVE-2017-3763?
There are no specific workarounds for CVE-2017-3763; upgrading to the latest version is recommended.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/last-modified-date
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- agent/source
- vendor/lenovo
- canonical/lenovo xclarity administrator
- version/lenovo xclarity administrator/1.3.1