Clear text storage of user credentials in log files in Lenovo XClarity Administrator (LXCA) versions earlier than 1.2.2

Clear text storage of user credentials in log files in Lenovo XClarity Administrator (LXCA) versions earlier than 1.2.2

CVE-2016-8233 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Log files generated by Lenovo XClarity Administrator (LXCA) versions earlier than 1.2.2 may contain user credentials in a non-secure, clear text form that could be viewed by a non-privileged user.

Learn more about our User Device Pen Test.