Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell EMC Data Protection Search, 19.4 and prior, and IDPA, 2.6.1 and prior, contain an Information Exposure in Log File Vulnerability in CIS. A local low privileged attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable application with the privileges of the compromised account.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
通过日志文件的信息暴露
Vulnerability Title
DELL EMC Data Protection Search 日志信息泄露漏洞
Vulnerability Description
DELL EMC Data Protection Search是美国戴尔(DELL)公司的一种可扩展的索引和搜索设备,与 Avamar 和 NetWorker 集成。 Dell EMC Data Protection Search存在日志信息泄露漏洞,该漏洞源于Dell EMC Data Protection Search在CIS中包含一个日志文件中的信息暴露漏洞。本地低特权攻击者可利用该漏洞,导致某些用户凭据的泄露。
CVSS Information
N/A
Vulnerability Type
N/A