Description
EMC Unisphere for VMAX before 1.6.1.6, when using an unspecified level of debug logging in LDAP configurations, allows local users to discover the cleartext LDAP bind password by reading the console.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/63425
Third Party Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2013-10/0155.html
Scores
EPSS
0.0006
EPSS Percentile
17.8%
Details
CWE
CWE-310
Status
published
Products (4)
dell/emc_unisphere
1.0
dell/emc_unisphere
1.1
dell/emc_unisphere
1.5
dell/emc_unisphere
< 1.6
Published
Nov 02, 2013
Tracked Since
Feb 18, 2026