CNNVD-202509-1584 Information
CNNVD ID
CNNVD-202509-1584
Related CVE
- CNNVD Published: 2025-09-11
Description (Chinese)
Lenovo XClarity Orchestrator是中国联想(Lenovo)公司的一个应用软件。为包含大量设备的环境提供集中监控、管理和分析。 Lenovo XClarity Orchestrator存在安全漏洞,该漏洞源于本地网络段攻击者可创建备用通信通道,可能导致未经授权访问内部功能或数据。
Description (English)
Lenovo XClarity Orchestrator is an application of Lenovo. Provide centralized monitoring, management and analysis of the environment, which contains a large quantity of equipment. There is a security loophole in Lenovo XClarity Orchestrator, which stems from the fact that local network attackers can create alternative communication channels that may lead to unauthorized access to internal functions or data.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
联想
Published
2025-09-11
Last Modified
2026-02-24
References
https://support.lenovo.com/us/en/product_security/LEN-201014 https://access.redhat.com/security/cve/cve-2025-8557
Patch
https://support.lenovo.com/us/en/product_security/LEN-201014
Share on: