3 matches found
CVE-2023-29057
A valid XCC user's local account permissions overrides their active directory permissions under specific configurations. This could lead to a privilege escalation. To be vulnerable, LDAP must be configured for authentication/authorization and logins configured as “Local First, then LDAP”...
CVE-2023-29057
A valid XCC user's local account permissions overrides their active directory permissions under specific configurations. This could lead to a privilege escalation. To be vulnerable, LDAP must be configured for authentication/authorization and logins configured as “Local First, then LDAP”...
CVE-2023-29057
CVE-2023-29057 affects Lenovo XClarity Controller (XCC). A valid XCC user’s local account permissions can override their Active Directory permissions under specific LDAP configurations labeled as “Local First, then LDAP,” enabling privilege escalation. Documented impact includes high confidential...