Lucene search

[email protected]CVE-2011-1742

HistoryAug 01, 2011 - 7:55 p.m.

CVE-2011-1742

2011-08-0119:55:00

CWE-255

[email protected]

web.nvd.nist.gov

emc

dpa

data protection advisor

cve-2011-1742

security

credentials

cleartext

sensitive information

local users

5.9 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.2%

JSON

EMC Data Protection Advisor before 5.8.1 places cleartext account credentials in the DPA configuration file in unspecified circumstances, which might allow local users to obtain sensitive information by reading this file.

CPENameOperatorVersion
emc:data_protection_advisoremc data protection advisoreq5.7
emc:data_protection_advisoremc data protection advisoreq5.6
emc:data_protection_advisoremc data protection advisoreq5.0
emc:data_protection_advisoremc data protection advisoreq5.8
emc:data_protection_advisoremc data protection advisoreq5.7.1
emc:data_protection_advisoremc data protection advisoreq5.6.1

CPE	Name	Operator	Version
emc:data_protection_advisor	emc data protection advisor	eq	5.7
emc:data_protection_advisor	emc data protection advisor	eq	5.6
emc:data_protection_advisor	emc data protection advisor	eq	5.0
emc:data_protection_advisor	emc data protection advisor	eq	5.8
emc:data_protection_advisor	emc data protection advisor	eq	5.7.1
emc:data_protection_advisor	emc data protection advisor	eq	5.6.1

References

securityreason.com/securityalert/8318

www.securityfocus.com/archive/1/519012/100/0/threaded

5.9 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2011-1742

securityvulns2 cvelist1 prion1