CVE-2023-29057

Name of the Vulnerable Software and Affected Versions XCC (affected versions not specified)

Description The issue concerns a scenario where a valid XCC user's local account permissions take precedence over their active directory permissions under specific configurations, potentially leading to a privilege escalation. For this issue to be exploitable, LDAP must be configured for authentication and authorization, and logins must be set up as "Local First, then LDAP".

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.