5 matches found
Security Bulletin: Multiple Vulnerabilities in XCC affect IBM Cloud Pak System
Summary Multiple Vulnerabilities in XClarity Controller XCC affect IBM Cloud Pak System. XCC is used by Cloud Pak System. IBM Cloud Pak System has addressed these vulnerabilities. Vulnerability Details CVEID:CVE-2023-4607 DESCRIPTION: Lenovo XClarity Controller XCC could allow a remote...
CVE-2023-0683
A valid, authenticated XCC user with read only access may gain elevated privileges through a specifically crafted API call...
CVE-2023-0683
A valid, authenticated XCC user with read only access may gain elevated privileges through a specifically crafted API call...
CVE-2023-0683
A valid, authenticated XCC user with read only access may gain elevated privileges through a specifically crafted API call...
CVE-2023-0683
CVE-2023-0683 affects Lenovo XClarity Controller (XCC). A valid, authenticated XCC user with read-only access can gain elevated privileges via a specially crafted API call. Exploitation context and impact are described in multiple sources (high risk, network access). Remediation: IBM Cloud Pak Sy...