CRITICAL🇬🇧 English

CVE-2017-4976

CVSS 9.8v3.0pub. 2017-07-09upd. 2026-05-13

EMC ESRS Policy Manager prior to 6.8 contains an undocumented account (OpenDS admin) with a default password. A remote attacker with the knowledge of the default password may login to the system and gain administrator privileges to the local LDAP directory server.

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Emc Esrs Policy Manager

    APP
    Emc
    ≤ 6.7
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2018-15764CRITICAL9.8ten sam produkt

Dell EMC ESRS Policy Manager versions 6.8 and prior contain a remote code execution vulnerability due to impro...

CVE-2018-11061CRITICAL9.1ten sam vendor

RSA NetWitness Platform versions prior to 11.1.0.2 and RSA Security Analytics versions prior to 10.6.6 are vul...

CVE-2018-1245CRITICAL9.0ten sam vendor

RSA Identity Lifecycle and Governance versions 7.0.1, 7.0.2 and 7.1.0 contains an authorization bypass vulnera...

CVE-2018-1235CRITICAL9.8ten sam vendor

Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3, contain a co...

CVE-2017-8013CRITICAL9.8ten sam vendor

EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts wi...