Vulnerability in Dell Emc_solutions_enabler_virtual_appliance
CVE-2018-1216
A hard-coded password vulnerability was discovered in vApp Manager which is embedded in Dell EMC Unisphere for VMAX, Dell EMC Solutions Enabler, Dell EMC VASA Virtual Appliances, and Dell EMC VMAX Embedded Management (eManagement): Dell EM…
EPSS: 0.221 (97.4th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Dell Emc_solutions_enabler_virtual_appliance
- Dell Emc_unisphere_for_vmax_virtual_appliance
- Dell Emc_vasa_virtual_appliance
- Dell Emc_vmax_embedded_management
- N/a Vapp Manager Which Is Embedded In Dell Emc Unisphere For Vmax, Solutions Enabler, Vasa Virtual Appliances, And Vmax Management (Emanagement) — versions vApp Manager which is embedded in Dell EMC Unisphere for VMAX, Dell EMC Solutions Enabler, Dell EMC VASA Virtual Appliances, and Dell EMC VMAX Embedded Management (eManagement)
Weakness classification (CWE)
Public proof-of-concept exploits
References
- security_alert@emc.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
- security_alert@emc.com (Third Party Advisory, x_refsource_MISC)
- security_alert@emc.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_SECTRACK)
- security_alert@emc.com (x_refsource_CONFIRM, Mailing List, Third Party Advisory)
Frequently asked questions
- What is CVE-2018-1216?
- CVE-2018-1216 is a critical-severity vulnerability in Dell Emc_solutions_enabler_virtual_appliance, classified under Use of Hard-coded Credentials. CVSS score: 9.8/10. Published 2018-03-08.
- How severe is CVE-2018-1216?
- Critical severity. CVSS v3 base score is 9.8 out of 10.
- Is CVE-2018-1216 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.