CVE-2018-9065

EPSS 0.14% · P34 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-9065

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

In Lenovo xClarity Administrator versions earlier than 2.1.0, an attacker that gains access to the underlying LXCA file system user may be able to retrieve a credential store containing the service processor user names and passwords for servers previously managed by that LXCA instance, and potentially decrypt those credentials more easily than intended.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Lenovo XClarity Administrator 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Lenovo XClarity Administrator（LXCA）是中国联想（Lenovo）公司的一套集中式的资源管理解决方案。该方案支持简化基础结构管理、加快服务器响应和提高Lenovo服务器系统性能等。 Lenovo LXCA 2.1.0之前版本中的Web API存在安全漏洞。攻击者可利用该漏洞凭证存储库（包含：LXCA进程之前所管理服务器的服务处理器用户名和密码）并可能解密这些凭证。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Lenovo Group Ltd.	Lenovo xClarity Administrator	Earlier than 2.1.0	-

II. Public POCs for CVE-2018-9065

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-9065

Please Login to view more intelligence information

https://support.lenovo.com/us/en/solutions/LEN-22168x_refsource_CONFIRM
https://nvd.nist.gov/vuln/detail/CVE-2018-9065

Same Patch Batch · Lenovo Group Ltd. · 2018-07-30 · 3 CVEs total

CVE-2018-9064		Lenovo XClarity Administrator 安全漏洞
CVE-2018-9066		Lenovo XClarity Administrator 安全漏洞

IV. Related Vulnerabilities

Same product: Lenovo xClarity Administrator

Same vendor: Lenovo Group Ltd.

V. Comments for CVE-2018-9065

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-9065

I. Basic Information for CVE-2018-9065

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-9065

III. Intelligence Information for CVE-2018-9065

Same Patch Batch · Lenovo Group Ltd. · 2018-07-30 · 3 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-9065

Leave a comment