Log files generated by Lenovo XClarity Administrator (LXCA) versions earlier than 1.2.2 may contain user credentials in a non-secure, clear text form that could be viewed by a non-privileged user.
Log files generated
Exploit
CVE-2016-8233
NVD
Update to v1.2.2