Vulnerabilities > EMC > Watch4Net > Low

DATE CVE VULNERABILITY TITLE RISK
2015-01-21 CVE-2015-0513 Cross-site Scripting vulnerability in EMC Vipr SRM and Watch4Net
Multiple cross-site scripting (XSS) vulnerabilities in the administrative user interface in EMC M&R (aka Watch4Net) before 6.5u1 and ViPR SRM before 3.6.1 allow remote authenticated users to inject arbitrary web script or HTML by leveraging privileged access to set crafted values of unspecified fields.
network
emc CWE-79
3.5
2013-12-28 CVE-2013-6181 Cryptographic Issues vulnerability in EMC Watch4Net 6.0/6.1/6.2
EMC Watch4Net before 6.3 stores cleartext polled-device passwords in the installation repository, which allows local users to obtain sensitive information by leveraging repository privileges.
local
low complexity
emc CWE-310
2.1