CVE-2016-8221

Name of the Vulnerable Software and Affected Versions Lenovo XClarity Administrator versions prior to 1.2.0

Description The issue allows for privilege escalation and is related to the management of rack switches or chassis with embedded input/output modules (IOMs) using Lenovo XClarity Administrator. Certain log files that are viewable by authenticated users may contain passwords for internal administrative accounts. These passwords are temporary and used internally by the LXCA code.

Recommendations For versions prior to 1.2.0, update to version 1.2.0 or later to resolve the issue.