Emc Integrated Data Protection Appliance Firmware Security Vulnerabilities and Issues — Emc Integrated Data Protection Appliance Firmware CVE List

Lucene search

DellEmc Integrated Data Protection Appliance Firmware

3 matches found

CVE•added 2019/09/27 9:15 p.m.•203 views

CVE-2019-3747

Dell EMC Integrated Data Protection Appliance versions prior to 2.3 contain a stored cross-site scripting vulnerability. A remote malicious ACM admin user may potentially exploit this vulnerability to store malicious HTML or JavaScript code in Cloud DR add-on specific field. When victim users acces...

8.4CVSS4.7AI score0.00452EPSS

CVE•added 2019/09/27 9:15 p.m.•196 views

CVE-2019-3736

Dell EMC Integrated Data Protection Appliance versions prior to 2.3 contain a password storage vulnerability in the ACM component. A remote authenticated malicious user with root privileges may potentially use a support tool to decrypt encrypted passwords stored locally on the system to use it to a...

8.2CVSS6.6AI score0.00076EPSS

CVE•added 2019/09/27 9:15 p.m.•194 views

CVE-2019-3746

Dell EMC Integrated Data Protection Appliance versions prior to 2.3 do not limit the number of authentication attempts to the ACM API. An authenticated remote user may exploit this vulnerability to launch a brute-force authentication attack in order to gain access to the system.

9.8CVSS8.6AI score0.00992EPSS