VYPR
High severity7.0NVD Advisory· Published Jan 12, 2017· Updated Jun 17, 2026

CVE-2016-8221

CVE-2016-8221

Description

Privilege Escalation in Lenovo XClarity Administrator earlier than 1.2.0, if LXCA is used to manage rack switches or chassis with embedded input/output modules (IOMs), certain log files viewable by authenticated users may contain passwords for internal administrative LXCA accounts with temporary passwords that are used internally by LXCA code.

Affected products

3
  • cpe:2.3:a:lenovo:xclarity_administrator:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:lenovo:xclarity_administrator:*:*:*:*:*:*:*:*range: <=1.1.1
    • (no CPE)range: <1.2.0
    • (no CPE)range: 1.2.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.