Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell EMC AppSync, versions from 4.2.0.0 to 4.6.0.0 including all Service Pack releases, contain an exposure of sensitive information vulnerability in AppSync server logs. A high privileged remote attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable system with privileges of the compromised account.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:N/A:N
Vulnerability Type
通过日志文件的信息暴露
Vulnerability Title
Dell EMC AppSync 日志信息泄露漏洞
Vulnerability Description
Dell EMC AppSync是美国戴尔(Dell)公司的一个复制数据管理软件。提供一种由 SLA 驱动的简单自助服务方式来保护、恢复和克隆关键的Microsoft 与 Oracle 应用程序以及 VMware 环境。 Dell EMC AppSync 存在日志信息泄露漏洞,该漏洞源于在 AppSync 服务器日志中包含敏感信息漏洞。
CVSS Information
N/A
Vulnerability Type
N/A