CVE-2013-3287

medium

Description

EMC Unisphere for VMAX before 1.6.1.6, when using an unspecified level of debug logging in LDAP configurations, allows local users to discover the cleartext LDAP bind password by reading the console.

References

http://www.securityfocus.com/bid/63425

http://archives.neohapsis.com/archives/bugtraq/2013-10/0155.html

Details

Source: Mitre, NVD

Published: 2013-11-02

Updated: 2021-08-05

Risk Information

CVSS v2

Base Score: 1.9

Vector: CVSS2#AV:L/AC:M/Au:N/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Severity: Medium