Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell EMC ViPR Controller, versions after 3.0.0.38, contain an information exposure vulnerability in the VRRP. VRRP defaults to an insecure configuration in Linux's keepalived component which sends the cluster password in plaintext through multicast. A malicious user, having access to the vCloud subnet where ViPR is deployed, could potentially sniff the password and use it to take over the cluster's virtual IP and cause a denial of service on that ViPR Controller system.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Dell EMC ViPR Controller VRRP 安全漏洞
Vulnerability Description
Dell EMC ViPR Controller是美国戴尔(Dell)公司的一套存储自动化软件。该软件通过自助服务和集中资源提供自动的、策略驱动的存储服务。VRRP是其中的一个虚拟路由冗余协议。 Dell EMC ViPR Controller 3.0.0.38之后的版本中的VRRP存在信息泄露漏洞,该漏洞源于Linux Brocade Fabric OS(FOS)是美国博科通讯系统(Brocade)公司的一套使用在交换机和路由器等设备中的嵌入式操作系统。command line interface(CL
CVSS Information
N/A
Vulnerability Type
N/A