CVE-2018-11079

Summary

Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains a Plaintext Password Storage vulnerability. Database credentials are stored in plaintext in a configuration file. An authenticated malicious user with access to the configuration file may obtain the exposed password to gain access to the application database.

Affected Software

VendorProductVersion RangeStatus
DELL EMCESRS Virtual Editionunspecified < 3.32.00.08affected

Weaknesses

  • Plaintext Password Storage Vulnerability

ADP Enrichment

CVE Program Container

Additional References

References