CVE-2011-4046
Dell KACE K2000 Systems Deployment Appliance - Cleartext Password Exposure in PHP Script
Title source: llmDescription
The Dell KACE K2000 System Deployment Appliance stores the recovery account password in cleartext within a PHP script, which allows context-dependent attackers to obtain sensitive information by examining script source code.
References (2)
Core 2
Core References
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/135606
Various Sources x_refsource_confirm
http://www.kace.com/support/kb/index.php?action=artikel&id=1120&artlang=en
Scores
EPSS
0.0029
EPSS Percentile
52.8%
Details
CWE
CWE-310
Status
published
Products (1)
dell/kace_k2000_systems_deployment_appliance
Published
Nov 12, 2011
Tracked Since
Feb 18, 2026