Emc: >> Secure Remote Services >> 3.18 Security Vulnerabilities
Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains a Plaintext Password Storage vulnerability. Database credentials are stored in plaintext in a configuration file. An authenticated malicious user with access to the configuration file may obtain the exposed password to gain access to the application database.
CVSS Score
5.5
EPSS Score
0.001
Published
2018-10-18
Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains Improper File Permission Vulnerabilities. The application contains multiple configuration files with world-readable permissions that could allow an authenticated malicious user to utilize the file contents to potentially elevate their privileges.
CVSS Score
7.3
EPSS Score
0.001
Published
2018-10-18
EMC ESRS VE 3.18 or earlier contains Authentication Bypass that could potentially be exploited by malicious users to compromise the affected system.
CVSS Score
5.3
EPSS Score
0.004
Published
2017-06-14