CVE-2014-4620

The EMC NetWorker Module for MEDITECH (aka NMMEDI) 3.0 build 87 through 90, when EMC RecoverPoint and Plink are used, stores cleartext RecoverPoint Appliance credentials in nsrmedisv.raw log files, which allows local users to obtain sensitive information by reading these files.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:meditech:meditech:3.0:87:*:*:*:*:*:*
cpe:2.3:a:meditech:meditech:3.0:90:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:emc:networker:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-10-25 10:55

Updated : 2024-02-04 18:35


NVD link : CVE-2014-4620

Mitre link : CVE-2014-4620

CVE.ORG link : CVE-2014-4620


JSON object : View

Products Affected

meditech

  • meditech

emc

  • networker
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor