PT-2019-18000 · Lenovo · Lenovo Service Bridge
Published
2019-06-26
·
Updated
2022-10-14
·
CVE-2019-6169
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Lenovo Service Bridge versions prior to 4.1.0.1
Description
A vulnerability in Lenovo Service Bridge could allow unencrypted downloads over FTP.
Recommendations
For versions prior to 4.1.0.1, update to version 4.1.0.1 or later to resolve the issue.
Fix
Missing Encryption of Sensitive Data
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Lenovo Service Bridge