Required CVE Record Information
Description
Dell EMC VPlex GeoSynchrony, versions prior to 6.1, contains an Insecure File Permissions vulnerability. A remote authenticated malicious user could read from VPN configuration files on and potentially author a MITM attack on the VPN traffic.
CVSS 1 Total
| Score | Severity | Version | Vector String |
|---|---|---|---|
| 4.0 | MEDIUM | 3.0 | CVSS:3.0/AV:A/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N |
References 2 Total
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 2 Total
- securitytracker.com: 1041613 vdb-entryx_transferred
- seclists.org: 20180907 DSA-2018-156: Dell EMC VPLEX Insecure File Permissions vulnerability on Witness mailing-listx_transferred