IBM Flex System Manager (FSM) 1.3.0 allows remote attackers to bypass intended access restrictions, and create new user accounts or execute tasks, by leveraging an expired password for the system-level account.
https://exchange.xforce.ibmcloud.com/vulnerabilities/87486
http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5093938