Vulnerability-Lookup

CNVD-2017-34701

Vulnerability from cnvd - Published: 2017-11-20

Title

EMC Data Protection Advisor硬密码密码漏洞

Description

EMC Data Protection Advisor是美国易安信（EMC）公司的一套数据保护管理解决方案。该方案支持自动和集中执行所有此类数据的收集与分析，并获得数据保护环境和活动的单个全面视图等。 EMC Data Protection Advisor 6.3版本和6.4版本中存在信息泄露漏洞。远程攻击者可利用该漏洞获取敏感信息，并执行未授权的操作。

Severity

中

Patch Name

EMC Data Protection Advisor硬密码密码漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，详情请关注厂商主页： https://www.emc.com/

Reference

http://seclists.org/fulldisclosure/2017/Sep/36 https://support.emc.com/downloads/829_Data-Protection-Advisor http://www.securityfocus.com/bid/100846

Impacted products

Name
['EMC Data Protection Advisor 6.4', 'EMC Data Protection Advisor 6.3']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "100846"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-8013"
    }
  },
  "description": "EMC Data Protection Advisor\u662f\u7f8e\u56fd\u6613\u5b89\u4fe1\uff08EMC\uff09\u516c\u53f8\u7684\u4e00\u5957\u6570\u636e\u4fdd\u62a4\u7ba1\u7406\u89e3\u51b3\u65b9\u6848\u3002\u8be5\u65b9\u6848\u652f\u6301\u81ea\u52a8\u548c\u96c6\u4e2d\u6267\u884c\u6240\u6709\u6b64\u7c7b\u6570\u636e\u7684\u6536\u96c6\u4e0e\u5206\u6790\uff0c\u5e76\u83b7\u5f97\u6570\u636e\u4fdd\u62a4\u73af\u5883\u548c\u6d3b\u52a8\u7684\u5355\u4e2a\u5168\u9762\u89c6\u56fe\u7b49\u3002\r\n\r\nEMC Data Protection Advisor 6.3\u7248\u672c\u548c6.4\u7248\u672c\u4e2d\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u654f\u611f\u4fe1\u606f\uff0c\u5e76\u6267\u884c\u672a\u6388\u6743\u7684\u64cd\u4f5c\u3002",
  "discovererName": "rgod",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttps://www.emc.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-34701",
  "openTime": "2017-11-20",
  "patchDescription": "EMC Data Protection Advisor\u662f\u7f8e\u56fd\u6613\u5b89\u4fe1\uff08EMC\uff09\u516c\u53f8\u7684\u4e00\u5957\u6570\u636e\u4fdd\u62a4\u7ba1\u7406\u89e3\u51b3\u65b9\u6848\u3002\u8be5\u65b9\u6848\u652f\u6301\u81ea\u52a8\u548c\u96c6\u4e2d\u6267\u884c\u6240\u6709\u6b64\u7c7b\u6570\u636e\u7684\u6536\u96c6\u4e0e\u5206\u6790\uff0c\u5e76\u83b7\u5f97\u6570\u636e\u4fdd\u62a4\u73af\u5883\u548c\u6d3b\u52a8\u7684\u5355\u4e2a\u5168\u9762\u89c6\u56fe\u7b49\u3002\r\n\r\nEMC Data Protection Advisor 6.3\u7248\u672c\u548c6.4\u7248\u672c\u4e2d\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u654f\u611f\u4fe1\u606f\uff0c\u5e76\u6267\u884c\u672a\u6388\u6743\u7684\u64cd\u4f5c\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "EMC Data Protection Advisor\u786c\u5bc6\u7801\u5bc6\u7801\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "EMC Data Protection Advisor 6.4",
      "EMC Data Protection Advisor 6.3"
    ]
  },
  "referenceLink": "http://seclists.org/fulldisclosure/2017/Sep/36\r\nhttps://support.emc.com/downloads/829_Data-Protection-Advisor\r\nhttp://www.securityfocus.com/bid/100846",
  "serverity": "\u4e2d",
  "submitTime": "2017-09-18",
  "title": "EMC Data Protection Advisor\u786c\u5bc6\u7801\u5bc6\u7801\u6f0f\u6d1e"
}

CVE-2017-8013 (GCVE-0-2017-8013)

Vulnerability from cvelistv5 – Published: 2018-03-16 20:00 – Updated: 2024-09-16 16:58

Summary

EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwords and various privileges. Affected accounts are: "Apollo System Test", "emc.dpa.agent.logon" and "emc.dpa.metrics.logon". An attacker with knowledge of the password could potentially use these accounts via REST APIs to gain unauthorized access to EMC Data Protection Advisor (including potentially access with administrative privileges).

Severity ?

No CVSS data available.

CWE

Hardcoded Password Vulnerability

Assigner

dell

References

URL

Tags

	http://www.securitytracker.com/id/1039370	vdb-entryx_refsource_SECTRACK
	http://seclists.org/fulldisclosure/2017/Sep/36	mailing-listx_refsource_FULLDISC
	http://www.securityfocus.com/bid/100846	vdb-entryx_refsource_BID

Impacted products

	Vendor	Product	Version
	Dell EMC	EMC Data Protection Advisor	Affected: 6.3.x Affected: 6.4.x

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T16:19:29.493Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1039370",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1039370"
          },
          {
            "name": "20170914 ESA-2017-098: EMC Data Protection Advisor Hardcoded Password Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2017/Sep/36"
          },
          {
            "name": "100846",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/100846"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "EMC Data Protection Advisor",
          "vendor": "Dell EMC",
          "versions": [
            {
              "status": "affected",
              "version": "6.3.x"
            },
            {
              "status": "affected",
              "version": "6.4.x"
            }
          ]
        }
      ],
      "datePublic": "2017-09-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwords and various privileges. Affected accounts are: \"Apollo System Test\", \"emc.dpa.agent.logon\" and \"emc.dpa.metrics.logon\". An attacker with knowledge of the password could potentially use these accounts via REST APIs to gain unauthorized access to EMC Data Protection Advisor (including potentially access with administrative privileges)."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Hardcoded Password Vulnerability",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-03-17T09:57:01",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "name": "1039370",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1039370"
        },
        {
          "name": "20170914 ESA-2017-098: EMC Data Protection Advisor Hardcoded Password Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2017/Sep/36"
        },
        {
          "name": "100846",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/100846"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security_alert@emc.com",
          "DATE_PUBLIC": "2017-09-14T00:00:00",
          "ID": "CVE-2017-8013",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "EMC Data Protection Advisor",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "6.3.x"
                          },
                          {
                            "version_value": "6.4.x"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Dell EMC"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwords and various privileges. Affected accounts are: \"Apollo System Test\", \"emc.dpa.agent.logon\" and \"emc.dpa.metrics.logon\". An attacker with knowledge of the password could potentially use these accounts via REST APIs to gain unauthorized access to EMC Data Protection Advisor (including potentially access with administrative privileges)."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Hardcoded Password Vulnerability"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1039370",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1039370"
            },
            {
              "name": "20170914 ESA-2017-098: EMC Data Protection Advisor Hardcoded Password Vulnerability",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2017/Sep/36"
            },
            {
              "name": "100846",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/100846"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2017-8013",
    "datePublished": "2018-03-16T20:00:00Z",
    "dateReserved": "2017-04-21T00:00:00",
    "dateUpdated": "2024-09-16T16:58:08.085Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2017-34701

CVE-2017-8013 (GCVE-0-2017-8013)

Tags

Sightings

Nomenclature