QwikSec

Security Database

CVE

CWE

Training

CVE-2014-4620

Published: Oct 25, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

The EMC NetWorker Module for MEDITECH (aka NMMEDI) 3.0 build 87 through 90, when EMC RecoverPoint and Plink are used, stores cleartext RecoverPoint Appliance credentials in nsrmedisv.raw log files, which allows local users to obtain sensitive information by reading these files.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20141022 ESA-2014-087: EMC NetWorker Module for MEDITECH (NMMEDI) Information Disclosure Vulnerability

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_SECTRACK

vdb-entry

x_refsource_BID

emc-networker-cve20144620-info-disc(97756)

vdb-entry

x_refsource_XF

http://packetstormsecurity.com/files/128841/EMC-NetWorker-Module-For-MEDITECH-NMMEDI-Information-Disclosure.html

x_refsource_MISC

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.