CVE-2023-25492 Information

Description

A valid authenticated user may be able to trigger a denial of service of the XCC web user interface or other undefined behavior through a format string injection vulnerability in a web interface API.

Reference

https://support.lenovo.com/us/en/product_security/LEN-99936