CVE-2015-0519
EMC Captiva Capture 7.0-7.1 - Exposure of Sensitive Information via DAL Log File
Title source: llmDescription
The InputAccel Database (IADB) installation process in EMC Captiva Capture 7.0 before patch 25 and 7.1 before patch 13 places a cleartext InputAccel (IA) SQL password in a DAL log file, which allows local users to obtain sensitive information by reading a file.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/130284/EMC-Captiva-Capture-Sensitive-Information-Disclosure.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/100748
Broken Link mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2015-02/0043.html
Scores
EPSS
0.0009
EPSS Percentile
25.4%
Details
CWE
CWE-200
Status
published
Products (2)
emc/captiva_capture
7.0
emc/captiva_capture
7.1
Published
Feb 14, 2015
Tracked Since
Feb 18, 2026