CVE-2023-34418 Information

Description

A valid authenticated LXCA user may be able to gain unauthorized access to events and other data stored in LXCA due to a SQL injection vulnerability in a specific web API.

Reference

https://support.lenovo.com/us/en/product_security/LEN-98715