Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3, under certain conditions, may leak LDAP password in plain-text into the RecoverPoint log file. An authenticated malicious user with access to the RecoverPoint log files may obtain the exposed LDAP password to use it in further attacks.
CPE | Name | Operator | Version |
---|---|---|---|
recoverpoint | lt | 5.1.2 | |
recoverpoint_for_virtual_machines | lt | 5.1.1.3 |