Описание
Dell EMC NetWorker versions 18.x,19.x prior to 19.3.0.4 and 19.4.0.0 contain an Information Disclosure in Log Files vulnerability. A local low-privileged user of the Networker server could potentially exploit this vulnerability to read plain-text credentials from server log files.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 19.1.1.0 (включая) до 19.3.0.4 (исключая)
Одно из
cpe:2.3:a:dell:emc_networker:*:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_networker:18.1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_networker:18.1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_networker:18.2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_networker:19.4.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00042
Низкий
7.8 High
CVSS3
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-532
CWE-532
Связанные уязвимости
github
больше 3 лет назад
Dell EMC NetWorker versions 18.x,19.x prior to 19.3.0.4 and 19.4.0.0 contain an Information Disclosure in Log Files vulnerability. A local low-privileged user of the Networker server could potentially exploit this vulnerability to read plain-text credentials from server log files.
EPSS
Процентиль: 13%
0.00042
Низкий
7.8 High
CVSS3
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-532
CWE-532