Vulnerabilities (CVE)

Filtered by vendor Hp Subscribe
Filtered by product Ezmeral Container Platform
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-7196 1 Hp 2 Bluedata Epic, Ezmeral Container Platform 2024-02-04 4.0 MEDIUM 6.5 MEDIUM
The HPE BlueData EPIC Software Platform version 4.0 and HPE Ezmeral Container Platform 5.0 use an insecure method of handling sensitive Kerberos passwords that is susceptible to unauthorized interception and/or retrieval. Specifically, they display the kdc_admin_password in the source file of the url "/bdswebui/assignusers/".