Описание
EMC Data Protection Advisor before 5.8.1 places cleartext account credentials in the DPA configuration file in unspecified circumstances, which might allow local users to obtain sensitive information by reading this file.
Ссылки
- Third Party Advisory
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 5.8 (включая)
Одно из
cpe:2.3:a:emc:data_protection_advisor:*:*:*:*:*:*:*:*
cpe:2.3:a:emc:data_protection_advisor:5.0:sp1:*:*:*:*:*:*
cpe:2.3:a:emc:data_protection_advisor:5.6:*:*:*:*:*:*:*
cpe:2.3:a:emc:data_protection_advisor:5.6.1:*:*:*:*:*:*:*
cpe:2.3:a:emc:data_protection_advisor:5.7:*:*:*:*:*:*:*
cpe:2.3:a:emc:data_protection_advisor:5.7:sp1:*:*:*:*:*:*
cpe:2.3:a:emc:data_protection_advisor:5.7.1:*:*:*:*:*:*:*
cpe:2.3:a:emc:data_protection_advisor:5.8:sp1:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00075
Низкий
2.1 Low
CVSS2
Дефекты
CWE-255
Связанные уязвимости
github
больше 3 лет назад
EMC Data Protection Advisor before 5.8.1 places cleartext account credentials in the DPA configuration file in unspecified circumstances, which might allow local users to obtain sensitive information by reading this file.
EPSS
Процентиль: 23%
0.00075
Низкий
2.1 Low
CVSS2
Дефекты
CWE-255