Privilege Escalation via Password Exposure in Lenovo XClarity Administrator

Privilege Escalation via Password Exposure in Lenovo XClarity Administrator

CVE-2016-8221 · LOW Severity

AV:L/AC:M/AU:N/C:P/I:N/A:N

Privilege Escalation in Lenovo XClarity Administrator earlier than 1.2.0, if LXCA is used to manage rack switches or chassis with embedded input/output modules (IOMs), certain log files viewable by authenticated users may contain passwords for internal administrative LXCA accounts with temporary passwords that are used internally by LXCA code.

Learn more about our Internal Network Penetration Testing.