Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell Grab for Windows, versions 5.0.4 and below, contains a cleartext storage of sensitive information vulnerability in its appsync module. An authenticated local attacker could potentially exploit this vulnerability, leading to information disclosure that could be used to access the appsync application with elevated privileges.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
Vulnerability Type
通过日志文件的信息暴露
Vulnerability Title
Dell Grab 日志信息泄露漏洞
Vulnerability Description
Dell Grab是美国戴尔(Dell)公司的一种配置技术。用于在连接到 Dell EMC 存储设备的主机上收集数据。 Dell Grab 5.0.4 及之前版本存在日志信息泄露漏洞,该漏洞源于appsync 模块中包含敏感信息明文存储,攻击者利用该漏洞可能获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A