Vulnerability in Dell Emc_integrated_data_protection_appliance
CVE-2018-11062
Integrated Data Protection Appliance versions 2.0, 2.1, and 2.2 contain undocumented accounts named 'support' and 'admin' that are protected with default passwords. These accounts have limited privileges and can access certain system files…
EPSS: 0.018 (75.3th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 8.8 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
Affected products
Weakness classification (CWE)
References
- security_alert@emc.com (mailing-list, x_refsource_FULLDISC, Mailing List, Third Party Advisory)
- security_alert@emc.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
Frequently asked questions
- What is CVE-2018-11062?
- CVE-2018-11062 is a high-severity vulnerability in Dell Emc_integrated_data_protection_appliance, classified under Use of Hard-coded Credentials. CVSS score: 8.8/10. Published 2018-11-02.
- How severe is CVE-2018-11062?
- High severity. CVSS v3 base score is 8.8 out of 10.