CVE-2023-4605

Name of the Vulnerable Software and Affected Versions Lenovo XClarity Administrator (affected versions not specified)

Description The issue is related to information disclosure and can be exploited by a remote attacker to gain unauthorized access to an API endpoint without authentication. A valid authenticated Lenovo XClarity Administrator user can potentially leverage an unauthenticated API endpoint to retrieve system event information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.