Vulnerabilities > EMC > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-10-31 | CVE-2012-4610 | Credentials Management vulnerability in EMC Avamar 6.1 EMC Avamar Client for VMware 6.1 stores the cleartext server root password on the proxy client, which might allow remote attackers to obtain sensitive information by leveraging "network access" to the proxy client. | 3.3 |
| 2012-10-18 | CVE-2012-2284 | Credentials Management vulnerability in EMC Networker Module for Microsoft Applications 2.2.1/2.3/2.4 The (1) install and (2) upgrade processes in EMC NetWorker Module for Microsoft Applications (NMM) 2.2.1, 2.3 before build 122, and 2.4 before build 375, when Exchange Server is used, allow local users to read cleartext administrator credentials via unspecified vectors. | 2.1 |
| 2012-10-10 | CVE-2012-2286 | Information Disclosure vulnerability in RSA Adaptive Authentication (On Premise) Unspecified vulnerability in EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 before SP3 P3 allows remote attackers to obtain sensitive information via unknown vectors. | 2.9 |
| 2012-01-19 | CVE-2011-4142 | Credentials Management vulnerability in EMC Sourceone Email Management The Web Search feature in EMC SourceOne Email Management 6.5 before 6.5.2.4033, 6.6 before 6.6.1.2194, and 6.7 before 6.7.2.2033 places cleartext credentials in log files, which allows local users to obtain sensitive information by reading these files. | 2.1 |
| 2011-08-01 | CVE-2011-1742 | Credentials Management vulnerability in EMC Data Protection Advisor EMC Data Protection Advisor before 5.8.1 places cleartext account credentials in the DPA configuration file in unspecified circumstances, which might allow local users to obtain sensitive information by reading this file. | 2.1 |
| 2011-05-24 | CVE-2011-1424 | Configuration vulnerability in EMC Sourceone Email Management 6.5.2.3668 The default configuration of ExShortcut\Web.config in EMC SourceOne Email Management before 6.6 SP1, when the Mobile Services component is used, does not properly set the localOnly attribute of the trace element, which allows remote authenticated users to obtain sensitive information via ASP.NET Application Tracing. | 3.5 |
| 2011-03-16 | CVE-2011-0442 | Cryptographic Issues vulnerability in EMC Avamar The service utility in EMC Avamar 5.x before 5.0.4 uses cleartext to transmit event details in (1) service requests and (2) e-mail messages, which might allow remote attackers to obtain sensitive information by sniffing the network. | 3.5 |
| 2007-09-21 | CVE-2007-5024 | Cryptographic Issues vulnerability in EMC VMWare Server 1.0.4/1.0.4Build56528 EMC VMware Server before 1.0.4 Build 56528 writes passwords in cleartext to unspecified log files, which allows local users to obtain sensitive information by reading these files, a different vulnerability than CVE-2005-3620. | 2.1 |