CVE-2019-6187

Name of the Vulnerable Software and Affected Versions Lenovo XClarity Controller (XCC) (affected versions not specified)

Description A stored CSV Injection issue was reported that could allow an administrative or other appropriately permissioned user to store malformed data in certain XCC server informational fields. This could result in crafted formulas being stored in an exported CSV file. The crafted formula has no effect on the XCC server itself.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.