2 matches found
CVE-2018-11080
Affected product: Dell EMC ESRS (Secure Remote Services) / ESRS Virtual Edition. Vulnerability: Improper file permissions in multiple configuration files that are world-readable, enabling an authenticated attacker to access file contents and potentially elevate privileges. Versions impacted: ESRS...
CVE-2018-11079
CVE-2018-11079 affects Dell EMC Secure Remote Services (ESRS) prior to 3.32.00.08. The vulnerability is plaintext storage of database credentials in a configuration file, allowing an authenticated user with access to that file to obtain the password and gain access to the application database. Se...