CVE-2016-8221

Privilege Escalation in Lenovo XClarity Administrator earlier than 1.2.0, if LXCA is used to manage rack switches or chassis with embedded input/output modules (IOMs), certain log files viewable by authenticated users may contain passwords for internal administrative LXCA accounts with temporary passwords that are used internally by LXCA code.
References
Link Resource
https://support.lenovo.com/us/en/product_security/LEN_10605 Patch Vendor Advisory
http://www.securityfocus.com/bid/95417 Third Party Advisory VDB Entry
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:lenovo:xclarity_administrator:*:*:*:*:*:*:*:*

Information

Published : 2017-01-12 14:59

Updated : 2017-01-19 07:59


NVD link : CVE-2016-8221

Mitre link : CVE-2016-8221


JSON object : View

CWE
CWE-264

Permissions, Privileges, and Access Controls

Advertisement

dedicated server usa

Products Affected

lenovo

  • xclarity_administrator