High severity7.0NVD Advisory· Published Jan 12, 2017· Updated Jun 17, 2026
CVE-2016-8221
CVE-2016-8221
Description
Privilege Escalation in Lenovo XClarity Administrator earlier than 1.2.0, if LXCA is used to manage rack switches or chassis with embedded input/output modules (IOMs), certain log files viewable by authenticated users may contain passwords for internal administrative LXCA accounts with temporary passwords that are used internally by LXCA code.
Affected products
3cpe:2.3:a:lenovo:xclarity_administrator:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:lenovo:xclarity_administrator:*:*:*:*:*:*:*:*range: <=1.1.1
- (no CPE)range: <1.2.0
- (no CPE)range: 1.2.0
Patches
Vulnerability mechanics
References
2- support.lenovo.com/us/en/product_security/LEN_10605nvdPatchVendor Advisory
- www.securityfocus.com/bid/95417nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.