Vsphere Data Protection@5.5.7 Security Vulnerabilities and Issues — Vsphere Data Protection@5.5.7 CVE List

Lucene search

VmwareVsphere Data Protection5.5.7

4 matches found

cve•added 2016/12/29 9:59 a.m.•60 views

CVE-2016-7456

VMware vSphere Data Protection (VDP) 5.5.x though 6.1.x has an SSH private key with a publicly known password, which makes it easier for remote attackers to obtain login access via an SSH session.

10CVSS9.1AI score0.82117EPSS

cve•added 2017/06/07 5:29 p.m.•47 views

CVE-2017-4914

VMware vSphere Data Protection (VDP) 6.1.x, 6.0.x, 5.8.x, and 5.5.x contains a deserialization issue. Exploitation of this issue may allow a remote attacker to execute commands on the appliance.

9.8CVSS9.5AI score0.13343EPSS

cve•added 2015/02/01 2:59 a.m.•46 views

CVE-2014-4632

VMware vSphere Data Protection (VDP) 5.1, 5.5 before 5.5.9, and 5.8 before 5.8.1 and the proxy client in EMC Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) 6.x and 7.0.x do not properly verify X.509 certificates from vCenter Server SSL servers, which allows man-in-the-middle attackers to ...

4.3CVSS6.2AI score0.00143EPSS

cve•added 2017/06/07 5:29 p.m.•41 views

CVE-2017-4917

VMware vSphere Data Protection (VDP) 6.1.x, 6.0.x, 5.8.x, and 5.5.x locally stores vCenter Server credentials using reversible encryption. This issue may allow plaintext credentials to be obtained.

9.8CVSS9.2AI score0.00081EPSS