Vulnerability CVE-2023-29056


Published: 2023-04-28   Modified: 2023-04-29

Description:
A valid LDAP user, under specific conditions, will default to read-only permissions when authenticating into XCC. To be vulnerable, XCC must be configured to use an LDAP server for Authentication/Authorization and have the login permission attribute not defined.

 References:
https://support.lenovo.com/us/en/product_security/LEN-118321

Copyright 2026, cxsecurity.com

 

Back to Top