CVE Record: CVE-2016-0904

Required CVE Record Information

Description

Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar Server before 7.3.0-233 use the same encryption key across different customers' installations, which allows remote attackers to defeat cryptographic protection mechanisms and obtain sensitive client-server traffic information by leveraging knowledge of this key from another installation.

Product Status

Learn more

Information not provided

References 3 Total

seclists.org: 20160919 ESA-2016-065: EMC Avamar Data Store and Avamar Virtual Edition Multiple Vulnerabilities
external site
mailing-list
securityfocus.com: 93026
external site
vdb-entry
securitytracker.com: 1036844
external site
vdb-entry

Updated: 2024-08-05

This container includes required additional information provided by the CVE Program for this vulnerability.

References 3 Total

seclists.org: 20160919 ESA-2016-065: EMC Avamar Data Store and Avamar Virtual Edition Multiple Vulnerabilities
external site
mailing-listx_transferred
securityfocus.com: 93026
external site
vdb-entryx_transferred
securitytracker.com: 1036844
external site
vdb-entryx_transferred

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: Dell EMC

Description

Product Status

References 3 Total

CVE Program

References 3 Total