{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "EMC Unisphere for VMAX before 1.6.1.6, when using an unspecified level of debug logging in LDAP configurations, allows local users to discover the cleartext LDAP bind password by reading the console."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2013-11-02T19:00:00Z", "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "shortName": "dell"}, "references": [{"name": "20131029 ESA-2013-074: EMC Unisphere for VMAX Information Disclosure Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://archives.neohapsis.com/archives/bugtraq/2013-10/0155.html"}, {"name": "63425", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/63425"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security_alert@emc.com", "ID": "CVE-2013-3287", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "EMC Unisphere for VMAX before 1.6.1.6, when using an unspecified level of debug logging in LDAP configurations, allows local users to discover the cleartext LDAP bind password by reading the console."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20131029 ESA-2013-074: EMC Unisphere for VMAX Information Disclosure Vulnerability", "refsource": "BUGTRAQ", "url": "http://archives.neohapsis.com/archives/bugtraq/2013-10/0155.html"}, {"name": "63425", "refsource": "BID", "url": "http://www.securityfocus.com/bid/63425"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T16:07:37.374Z"}, "title": "CVE Program Container", "references": [{"name": "20131029 ESA-2013-074: EMC Unisphere for VMAX Information Disclosure Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://archives.neohapsis.com/archives/bugtraq/2013-10/0155.html"}, {"name": "63425", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/63425"}]}]}, "cveMetadata": {"assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "assignerShortName": "dell", "cveId": "CVE-2013-3287", "datePublished": "2013-11-02T19:00:00Z", "dateReserved": "2013-04-26T00:00:00Z", "dateUpdated": "2024-09-17T01:45:45.950Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:dell:emc_unisphere:*:*:*:*:*:vmax:*:*", "matchCriteriaId": "1F147989-66CD-4BAE-B0BA-D2144376D7D1", "versionEndIncluding": "1.6", "vulnerable": true}, {"criteria": "cpe:2.3:a:dell:emc_unisphere:1.0:*:*:*:*:vmax:*:*", "matchCriteriaId": "A0A8A0CA-0760-4751-AB8F-DE9B472CA0E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:dell:emc_unisphere:1.1:*:*:*:*:vmax:*:*", "matchCriteriaId": "69255668-4966-4BBD-91EC-BFFE800D6F5A", "vulnerable": true}, {"criteria": "cpe:2.3:a:dell:emc_unisphere:1.5:*:*:*:*:vmax:*:*", "matchCriteriaId": "4BCFCC0D-F6E5-4FF8-A513-DF5192B98675", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "EMC Unisphere for VMAX before 1.6.1.6, when using an unspecified level of debug logging in LDAP configurations, allows local users to discover the cleartext LDAP bind password by reading the console."}, {"lang": "es", "value": "EMC Unisphere para VMAX anterior a 1.6.1.6, cuando se utiliza un nivel no especificado del registro de depuraci\u00f3n en las configuraciones de LDAP, permite a los usuarios locales descubrir la contrase\u00f1a LDAP bind sin cifrar mediante la lectura de la consola."}], "id": "CVE-2013-3287", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2013-11-02T19:55:04.493", "references": [{"source": "security_alert@emc.com", "url": "http://archives.neohapsis.com/archives/bugtraq/2013-10/0155.html"}, {"source": "security_alert@emc.com", "url": "http://www.securityfocus.com/bid/63425"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://archives.neohapsis.com/archives/bugtraq/2013-10/0155.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/63425"}], "sourceIdentifier": "security_alert@emc.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-310"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}