CVE-2018-11062 Vulnerability Details

  /     /     /  

CVE-2018-11062 Metadata Quick Info

CVE Published: 02/11/2018 | CVE Updated: 16/09/2024 | CVE Year: 2018
Source: dell | Vendor: Dell EMC | Product: Integrated Data Protection Appliance
Status : PUBLISHED

CVE-2018-11062 Description

Integrated Data Protection Appliance versions 2.0, 2.1, and 2.2 contain undocumented accounts named \'support\' and \'admin\' that are protected with default passwords. These accounts have limited privileges and can access certain system files only. A malicious user with the knowledge of the default passwords may potentially log in to the system and gain read and write access to certain system files.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: Dell EMC Integrated Data Protection Appliance Undocumented Accounts Vulnerability
Source: Dell EMC

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).

Last added CVEs

▸ CVE-2024-9999 ◂
Discovered: 12/11/2024
Status: PUBLISHED
▸ CVE-2024-9997 ◂
Discovered: 29/10/2024
Status: PUBLISHED
▸ CVE-2024-9996 ◂
Discovered: 29/10/2024
Status: PUBLISHED



Tags:
CVE-2018-11062 Vulnerability Details