Information disclosure in RecoverPoint - CVE-2018-1241
Published: May 23, 2018
Vulnerability identifier: #VU12998
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2018-1241
CWE-ID: CWE-200
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Dell
Affected software:
RecoverPoint
RecoverPoint
Detailed vulnerability description
The vulnerability allows a remote attacker to obtain potentially sensitive information on the target system.
The weakness exists due to LDAP credentials are leaked into the tomcat.log file when the LDAP server is not contactable by RecoverPoint, and a log in attempt is made to an LDAP linked account via a RecoverPoint web interface. A remote attacker with access to the RecoverPoint file system can obtain LDAP credentials and compromise the LDAP account.
The weakness exists due to LDAP credentials are leaked into the tomcat.log file when the LDAP server is not contactable by RecoverPoint, and a log in attempt is made to an LDAP linked account via a RecoverPoint web interface. A remote attacker with access to the RecoverPoint file system can obtain LDAP credentials and compromise the LDAP account.
How to mitigate CVE-2018-1241
Update to version 5.1.2 or 5.1.1.3.