CVE-2018-15765

Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains an Information Exposure vulnerability. The log file contents store sensitive data including executed commands to generate authentication tokens which may prove useful to an attacker for crafting malicious authentication tokens for querying the application and subsequent attacks.
References
Link Resource
https://seclists.org/fulldisclosure/2018/Oct/35 Mailing List Third Party Advisory
http://www.securitytracker.com/id/1041877 Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/105694 Third Party Advisory VDB Entry
Configurations

Configuration 1

cpe:2.3:a:dell:emc_secure_remote_services:*:*:*:*:virtual:*:*:*

Information

Published : 2018-10-18 10:29

Updated : 2019-10-09 11:35


NVD link : CVE-2018-15765

Mitre link : CVE-2018-15765

Products Affected
No products.
CWE