LDAP Password Leakage in Dell EMC RecoverPoint

LDAP Password Leakage in Dell EMC RecoverPoint

CVE-2018-1241 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3, under certain conditions, may leak LDAP password in plain-text into the RecoverPoint log file. An authenticated malicious user with access to the RecoverPoint log files may obtain the exposed LDAP password to use it in further attacks.

Learn more about our User Device Pen Test.