Known Vulnerabilities
CVE-2023-0683
A valid, authenticated XCC user with read only access may gain elevated privileges through a specifically crafted API call.
HIGH
CVSS 8.3
Published May 01, 2023
CVE-2023-25492
A valid, authenticated user may be able to trigger a denial of service of the XCC web user interface or other undefined behavior through a format string injection vulnerability in a web interface API.
MEDIUM
CVSS 6.3
Published May 01, 2023