Cleartext Data-Center Discovery Credentials Disclosure in EMC M&R and ViPR SRM

Cleartext Data-Center Discovery Credentials Disclosure in EMC M&R and ViPR SRM

CVE-2015-0514 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

EMC M&R (aka Watch4Net) before 6.5u1 and ViPR SRM before 3.6.1 might allow remote attackers to obtain cleartext data-center discovery credentials by leveraging certain SRM access to conduct a decryption attack.

Learn more about our Web Application Penetration Testing UK.