QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2018-11076

Back to search

CVE-2018-11076

Published: Nov 26, 2018

Modified: Sep 16, 2024

PUBLISHED

Description

Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0 and 7.4.1 and Dell EMC Integrated Data Protection Appliance (IDPA) 2.0 are affected by an information exposure vulnerability. Avamar Java management console's SSL/TLS private key may be leaked in the Avamar Java management client package. The private key could potentially be used by an unauthenticated attacker on the same data-link layer to initiate a MITM attack on management console users.

VendorProductVersions

Dell EMC

Avamar

affected
7.2.0
affected
7.2.1
affected
7.3.0
affected
7.3.1
affected
7.4.0

+1 more versions

Dell EMC

Integrated Data Protection Appliance

affected
2.0

References

105972
vdb-entry
x_refsource_BID
1042153
vdb-entry
x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now