A valid XCC user's local account permissions overrides their active directory permissions under specific configurations. This could lead to a privilege escalation. To be vulnerable, LDAP must be configured for authentication/authorization and logins configured as “Local First, then LDAP”.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: lenovo

Published: 2023-04-28T20:53:13.267Z

Updated: 2024-08-02T14:00:15.127Z

Reserved: 2023-03-30T12:46:45.646Z

Link: CVE-2023-29057

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-04-28T21:15:08.673

Modified: 2024-11-21T07:56:28.157

Link: CVE-2023-29057

cve-icon Redhat

No data.