CVE-2015-4526

EMC RecoverPoint for Virtual Machines VMs 4.2 allows local users to obtain root-shell access by bypassing the Installation Manager Boxmgmt CLI interface...

CVE-2015-4526

EMC RecoverPoint for Virtual Machines (VMs) 4.2 is affected by a local privilege escalation where an attacker can bypass the Installation Manager Boxmgmt CLI interface to gain root-shell access. The issue is reported for version 4.2 and is described as a restriction bypass that enables command ex...

ESA-2014-087: EMC NetWorker Module for MEDITECH (NMMEDI) Information Disclosure Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-087: EMC NetWorker Module for MEDITECH NMMEDI Information Disclosure Vulnerability EMC Identifier: ESA-2014-087 CVE Identifier: CVE-2014-4620 Severity Rating: CVSS v2 Base Score: 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C Affected products: • EMC NetWork...

CVE-2014-4620

The EMC NetWorker Module for MEDITECH aka NMMEDI 3.0 build 87 through 90, when EMC RecoverPoint and Plink are used, stores cleartext RecoverPoint Appliance credentials in nsrmedisv.raw log files, which allows local users to obtain sensitive information by reading these files...

EMC RecoverPoint Appliance restrictions bypass

Access to arbitrary ports is not restricted...

ESA-2014-074: EMC RecoverPoint Appliance Security Control Bypass Vulnerability

ESA-2014-074.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-074: EMC RecoverPoint Appliance Security Control Bypass Vulnerability EMC Identifier: ESA-2014-074 CVE Identifier: CVE-2014-2519 Severity Rating: CVSS v2 Base Score: 5.8 AV:N/AC:M/Au:N/C:P/I:N/A:P Affected products: • EMC...

CVE-2014-2519

The default configuration of EMC RecoverPoint Appliance RPA 4.1 before 4.1.0.1 does not enable a firewall, which allows remote attackers to obtain potentially sensitive information about open ports, or cause a denial of service, by sending packets to many ports...

Default configuration

The default configuration of EMC RecoverPoint Appliance RPA 4.1 before 4.1.0.1 does not enable a firewall, which allows remote attackers to obtain potentially sensitive information about open ports, or cause a denial of service, by sending packets to many ports...

CVE-2014-2519

The default configuration of EMC RecoverPoint Appliance RPA 4.1 before 4.1.0.1 does not enable a firewall, which allows remote attackers to obtain potentially sensitive information about open ports, or cause a denial of service, by sending packets to many ports...

CVE-2014-2519

CVE-2014-2519 affects EMC RecoverPoint Appliance (RPA) 4.1 prior to 4.1.0.1, where the firewall is disabled by default. This allows unauthenticated remote actors to discover open ports and potentially cause a denial of service by sending traffic to multiple ports. The EMC advisory ESA-2014-074 do...