Lucene search
+L

134 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-37383

Malicious code in bioql PyPI...

7.2CVSS7.1AI score0.01006EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-32661

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.0036EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-54461

Malicious code in bioql PyPI...

7.2CVSS7.1AI score0.00336EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.11 views

EUVD-2024-49064

Malicious code in bioql PyPI...

7.2CVSS7.1AI score0.01032EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-41274

Malicious code in bioql PyPI...

6.8CVSS6.6AI score0.00195EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-49065

Malicious code in bioql PyPI...

7.2CVSS7.1AI score0.01032EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 10:33 a.m.8 views

CVE-2024-8059

IPMI credentials may be captured in XCC audit log entries when the account username length is 16 characters...

4.3CVSS7AI score0.00195EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 7:4 a.m.7 views

CVE-2024-45102

A privilege escalation vulnerability was discovered that could allow a valid, authenticated LXCA user to escalate their permissions for a connected XCC instance when using LXCA as a Single Sign On SSO provider for XCC instances...

6.8CVSS7.3AI score0.00195EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 4:45 a.m.11 views

CVE-2023-4606

An authenticated XCC user with Read-Only permission can change a different user’s password through a crafted API command. This affects ThinkSystem v2 and v3 servers with XCC; ThinkSystem v1 servers are not affected...

8.1CVSS6.9AI score0.00458EPSS
Exploits0References1
ibm
ibm
added 2025/04/15 3:19 a.m.40 views

Security Bulletin: Multiple vulnerabilities in XCC affect Cloud Pak System

Summary Multiple vulnerabilities in XCC affect Cloud Pak System. Vulnerability Details CVEID:CVE-2024-8281 DESCRIPTION: Lenovo XClarity Controller could allow a remote authenticated attacker to execute arbitrary commands on the system, caused by an input validation weakness. An attacker could...

7.2CVSS7.9AI score0.01099EPSS
Exploits0Affected Software1
redhatcve
redhatcve
added 2025/02/05 9:4 a.m.5 views

CVE-2024-38512

A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted IPMI commands...

7.2CVSS7.6AI score0.01006EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 8:55 a.m.8 views

CVE-2024-38509

A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to execute arbitrary code via a specially crafted IPMI command...

7.2CVSS7.9AI score0.0055EPSS
Exploits0
redhatcve
redhatcve
added 2025/02/04 10:42 p.m.11 views

CVE-2024-8281

An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection through specially crafted command line input in the XCC SSH captive shell...

7.2CVSS7.2AI score0.01032EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/04 10:36 p.m.5 views

CVE-2024-8278

A privilege escalation vulnerability was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection via specially crafted IPMI commands...

7.2CVSS7.5AI score0.01099EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/04 10:31 p.m.5 views

CVE-2024-8279

A privilege escalation vulnerability was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads...

7.2CVSS7.5AI score0.01099EPSS
Exploits0References1
nvd
nvd
added 2025/01/14 10:15 p.m.11 views

CVE-2024-45102

A privilege escalation vulnerability was discovered that could allow a valid, authenticated LXCA user to escalate their permissions for a connected XCC instance when using LXCA as a Single Sign On SSO provider for XCC instances...

6.8CVSS0.00195EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/01/14 9:18 p.m.6 views

CVE-2024-45102

A privilege escalation vulnerability was discovered that could allow a valid, authenticated LXCA user to escalate their permissions for a connected XCC instance when using LXCA as a Single Sign On SSO provider for XCC instances...

6.8CVSS6.9AI score0.00195EPSS
Exploits0References1
cve
cve
added 2025/01/14 9:18 p.m.56 views

CVE-2024-45102

Lenovo XClarity Administrator (LXCA) privilege escalation vulnerability (CVE-2024-45102) could allow a valid, authenticated LXCA user to elevate privileges for a connected XCC instance when LXCA is used as the SSO provider. Exploitation status is not detailed in the provided sources; CVSS 3.1 bas...

6.8CVSS7.3AI score0.00195EPSS
Exploits0References1
cvelist
cvelist
added 2025/01/14 9:18 p.m.12 views

CVE-2024-45102

A privilege escalation vulnerability was discovered that could allow a valid, authenticated LXCA user to escalate their permissions for a connected XCC instance when using LXCA as a Single Sign On SSO provider for XCC instances...

6.8CVSS0.00195EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/01/14 12:0 a.m.7 views

PT-2025-2685 · Lxca · Lxca

Name of the Vulnerable Software and Affected Versions: LXCA affected versions not specified Description: A privilege escalation issue was discovered that could allow a valid, authenticated LXCA user to escalate their permissions for a connected XCC instance when using LXCA as a Single Sign On SSO...

6.8CVSS7.3AI score0.00195EPSS
Exploits0References6
Rows per page
Query Builder