Vulnerabilities > Lenovo > Thinksystem Sd650 Dual Node Tray Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-10-25 CVE-2023-4607 Improper Privilege Management vulnerability in Lenovo products
An authenticated XCC user can change permissions for any user through a crafted API command.
network
low complexity
lenovo CWE-269
8.8
8.8