69 matches found
EUVD-2012-4541
Malware in sbrugna...
EUVD-2011-1425
Malware in sbrugna...
EUVD-2011-1741
Malware in sbrugna...
EUVD-2018-3092
Malware in sbrugna...
EUVD-2017-16972
Malware in sbrugna...
EUVD-2019-8329
Malware in sbrugna...
EUVD-2017-16973
Malware in sbrugna...
EUVD-2016-9059
Malware in sbrugna...
CVE-2012-4616
Directory traversal vulnerability in the Web UI in EMC Data Protection Advisor DPA 5.6 through SP1, 5.7 through SP1, and 5.8 through SP4 allows remote attackers to read arbitrary files via unspecified vectors...
EMC Data Protection Advisor < 19.7 Build B4 XSS (DSA-2022-107)
According to its self-reported version, the application is below version 19.7 Build B4. It is, therefore, affected by a stored cross-site scripting vulnerability. When a victim user accesses the data store through their browsers, the malicious code gets executed by the web browser in the context ...
CVE-2020-5351
Dell EMC Data Protection Advisor versions 6.4, 6.5 and 18.1 contain an undocumented account with limited privileges that is protected with a hard-coded password. A remote unauthenticated malicious user with the knowledge of the hard-coded password may login to the system and gain read-only...
EMC Data Protection Advisor 6.4 / 6.5 / 18.1 OS Command Injection (DSA-2020-081)
The version of EMC Protection Advisor installed on the remote host is 6.4, 6.5 or 18.1. It is, therefore, affected by an OS command injection vulnerability. An authenticated, remote attacker can exploit this to execute arbitrary commands on the affected system. C Tenable Network Security, Inc...
CVE-2019-18582
Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2 versions prior to patch 83, and 19.1 versions prior to patch 71 contain a server-side template injection vulnerability in the REST API. A remote authenticated malicious user with administrative privileges may potentially exploit this...
EMC Data Protection Advisor 6.2 < 6.4 Patch B180 / < 6.5 patch B51 (DSA-2018-112).
According to its self-reported version, the application is 6.2 6.4 Patch B180 or 6.5 6.5 patch B51. It is, therefore, affected by an XML external entity vulnerability vulnerability. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid112193; scriptversion"1.6";...
EMC Data Protection Advisor Installed
Binary data winemcdpainstalled.nbin...
Hardcoded credentials
EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwords and various privileges. Affected accounts are: "Apollo System Test", "emc.dpa.agent.logon" and "emc.dpa.metrics.logon". An attacker with knowledge of the password...
CVE-2017-8013
EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwords and various privileges. Affected accounts are: "Apollo System Test", "emc.dpa.agent.logon" and "emc.dpa.metrics.logon". An attacker with knowledge of the password...
CVE-2017-8013
EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwords and various privileges. Affected accounts are: "Apollo System Test", "emc.dpa.agent.logon" and "emc.dpa.metrics.logon". An attacker with knowledge of the password...
EMC Data Protection Advisor < 6.4.110 Database Hardcoded Password Vulnerability
According to its self-reported version number, the EMC Data Protection Advisor running on the remote host is 6.3.x prior to 6.3 patch 159 or 6.4.x prior to 6.4 patch 110. It is, therefore, affected by a default credential vulnerability due to hardcoded password with the appolosuperuser database...
CVE-2017-10955
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC Data Protection Advisor 6.3.0. Authentication is required to exploit this vulnerability. The specific flaw exists within the EMC DPA Application service, which listens on TCP port 9002 by...