CVE-2011-4142
Published Jan 19, 2012
Last updated 13 years ago
Overview
- Description
- The Web Search feature in EMC SourceOne Email Management 6.5 before 6.5.2.4033, 6.6 before 6.6.1.2194, and 6.7 before 6.7.2.2033 places cleartext credentials in log files, which allows local users to obtain sensitive information by reading these files.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 2.1
- Impact score
- 2.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-255
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:emc:sourceone_email_management:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CA4F3BDC-6F81-4238-B31D-FF74CC5226F7",
"versionEndIncluding": "6.5.2.3668"
},
{
"criteria": "cpe:2.3:a:emc:sourceone_email_management:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7D553126-A393-4C8F-AA87-8F056D403576",
"versionEndIncluding": "6.6.1.2108"
},
{
"criteria": "cpe:2.3:a:emc:sourceone_email_management:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "086F4178-6C6E-454C-9A9F-4165627BA3F6",
"versionEndIncluding": "6.7.2.0017"
},
{
"criteria": "cpe:2.3:a:emc:sourceone_email_management:6.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "15148CCF-B0BA-4971-8F7E-3DD2B3263024"
},
{
"criteria": "cpe:2.3:a:emc:sourceone_email_management:6.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3AB20B79-E824-4926-A51B-D52E2EEF58B0"
},
{
"criteria": "cpe:2.3:a:emc:sourceone_email_management:6.6.0.1209:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7BB46E4E-AA80-4DDB-994A-3C20AF6AF94C"
},
{
"criteria": "cpe:2.3:a:emc:sourceone_email_management:6.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5DF4562E-568F-41D5-A9DD-E397150F87AB"
}
],
"operator": "OR"
}
]
}
]