CVE-2019-3741

Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116 contain a plain-text password storage vulnerability. A Unisphere user’s (including the admin privilege user) password is stored in a plain text in Unity Data Collection bundle (logs files for troubleshooting). A local authenticated attacker with access to the Data Collection bundle may use the exposed password to gain access with the privileges of the compromised user.

Publication date: Thu, 18 Jul 2019 21:15:00 +0000

Cyber News related to CVE-2019-3741

CVE-2019-1015 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0968, CVE-2019-0977, ...
5 years ago

CVE-2019-1016 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0968, CVE-2019-0977, ...
5 years ago

CVE-2019-0977 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0968, CVE-2019-1009, ...
5 years ago

CVE-2019-1013 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0968, CVE-2019-0977, ...
5 years ago

CVE-2019-1046 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0968, CVE-2019-0977, ...
5 years ago

CVE-2019-1050 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0968, CVE-2019-0977, ...
5 years ago

CVE-2019-1049 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0968, CVE-2019-0977, ...
5 years ago

CVE-2019-1048 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0968, CVE-2019-0977, ...
5 years ago

CVE-2019-1047 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0968, CVE-2019-0977, ...
5 years ago

CVE-2019-1010 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0968, CVE-2019-0977, ...
5 years ago

CVE-2019-1011 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0968, CVE-2019-0977, ...
5 years ago

CVE-2019-1012 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0968, CVE-2019-0977, ...
5 years ago

CVE-2019-1009 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0968, CVE-2019-0977, ...
5 years ago

CVE-2019-0968 - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0977, CVE-2019-1009, ...
4 years ago

CVE-2019-18299 - A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server can trigger a Denial-of-Service condition by sending specifically crafted packets to port 5010/tcp. This ...
2 years ago

CVE-2019-18298 - A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could trigger a Denial-of-Service condition by sending specifically crafted packets to port 5010/tcp. This ...
2 years ago

CVE-2019-18291 - A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could trigger a Denial-of-Service condition by sending specifically crafted packets to port 5010/tcp. This ...
2 years ago

CVE-2019-18292 - A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could trigger a Denial-of-Service condition by sending specifically crafted packets to port 5010/tcp. This ...
2 years ago

CVE-2019-18294 - A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could trigger a Denial-of-Service condition by sending specifically crafted packets to port 5010/tcp. This ...
2 years ago

CVE-2019-18290 - A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could trigger a Denial-of-Service condition by sending specifically crafted packets to port 5010/tcp. This ...
2 years ago

CVE-2019-18304 - A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server can trigger a Denial-of-Service condition by sending specifically crafted packets to port 5010/tcp. This ...
2 years ago

CVE-2019-18306 - A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could trigger a Denial-of-Service condition by sending specifically crafted packets to port 5010/tcp. This ...
2 years ago

CVE-2019-18301 - A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server can trigger a Denial-of-Service condition by sending specifically crafted packets to port 5010/tcp. This ...
2 years ago

CVE-2019-18307 - A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could trigger a Denial-of-Service condition by sending specifically crafted packets to port 5010/tcp. This ...
2 years ago

CVE-2019-18302 - A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server can trigger a Denial-of-Service condition by sending specifically crafted packets to port 5010/tcp. This ...
2 years ago

Latest Cyber News

Google Chrome disables uBlock Origin for some in Manifest v3 rollout - 13 minutes ago
Hackers drained $1.4 billion of cryptocurrency from Bybit exchange, CEO confirms | The Record from Recorded Future News - 1 hour ago
Auto-Generated Password Vulnerability In Sitevision Leaks Signing Key - 2 hours ago
SpyLend Android malware downloaded 100,000 times from Google Play - 2 hours ago
Feds fine Warby Parker $1.5 million for failing to protect customer health data | The Record from Recorded Future News - 3 hours ago
Hacker steals record $1.46 billion from Bybit ETH cold wallet - 4 hours ago
Hacker steals over $1.46 billion of crypto from Bybit ETH cold wallet - 4 hours ago
China Claim That NSA Allegedly Hacked Northwestern Polytechnical University - 5 hours ago
CISA flags Craft CMS code injection flaw as exploited in attacks - 5 hours ago
ACRStealer Malware Exploiting Google Docs as C2 To Steal Login Credentials - 5 hours ago
Apple pulls iCloud end-to-end encryption feature in the UK - 5 hours ago
Darcula 3.0 Tool Automatically Generates Phishing Kit For Any Brand - 6 hours ago
Ukrainian hackers claim breach of Russian loan company linked to Putin’s ex-wife | The Record from Recorded Future News - 6 hours ago
Black Basta is latest ransomware group to be hit by leak of chat logs | The Record from Recorded Future News - 8 hours ago
CISA Releases 7 ICS Advisories Detailing Vulnerabilities & Exploits - 13 hours ago
Pegasus Spyware Used Widely to Target Individuals in Private Industry & Finance Sectors - 14 hours ago
SPAWNCHIMERA Malware Exploiting Ivanti Buffer Overflow Vulnerability By Applying A Fix - Cyber Security News - 14 hours ago
Chinese Hackers Using New Bookworm Malware In Attacks Targeting Southeast Asia - 15 hours ago
Google Released PoC Exploit for Palo Alto Firewall Command Injection Vulnerability - 17 hours ago
New Active Directory Pentesting Tool For KeyCredentialLink Management - 18 hours ago

Cyber Trends (last 7 days)

Okta - 1 year ago
23andMe - 1 year ago
Kimsuky - 1 year ago
LogoFAIL - 1 year ago
Gh0st rat - 1 year ago

Trending Cyber News (last 7 days)

Google Chrome disables uBlock Origin for some in Manifest v3 rollout - 13 minutes ago
Hackers drained $1.4 billion of cryptocurrency from Bybit exchange, CEO confirms | The Record from Recorded Future News - 1 hour ago
Auto-Generated Password Vulnerability In Sitevision Leaks Signing Key - 2 hours ago
SpyLend Android malware downloaded 100,000 times from Google Play - 2 hours ago
Feds fine Warby Parker $1.5 million for failing to protect customer health data | The Record from Recorded Future News - 3 hours ago
Hacker steals record $1.46 billion from Bybit ETH cold wallet - 4 hours ago
Hacker steals over $1.46 billion of crypto from Bybit ETH cold wallet - 4 hours ago
China Claim That NSA Allegedly Hacked Northwestern Polytechnical University - 5 hours ago
CISA flags Craft CMS code injection flaw as exploited in attacks - 5 hours ago
ACRStealer Malware Exploiting Google Docs as C2 To Steal Login Credentials - 5 hours ago
Apple pulls iCloud end-to-end encryption feature in the UK - 5 hours ago
Darcula 3.0 Tool Automatically Generates Phishing Kit For Any Brand - 6 hours ago
Ukrainian hackers claim breach of Russian loan company linked to Putin’s ex-wife | The Record from Recorded Future News - 6 hours ago
Black Basta is latest ransomware group to be hit by leak of chat logs | The Record from Recorded Future News - 8 hours ago
CISA Releases 7 ICS Advisories Detailing Vulnerabilities & Exploits - 13 hours ago
Pegasus Spyware Used Widely to Target Individuals in Private Industry & Finance Sectors - 14 hours ago
SPAWNCHIMERA Malware Exploiting Ivanti Buffer Overflow Vulnerability By Applying A Fix - Cyber Security News - 14 hours ago
Chinese Hackers Using New Bookworm Malware In Attacks Targeting Southeast Asia - 15 hours ago
Google Released PoC Exploit for Palo Alto Firewall Command Injection Vulnerability - 17 hours ago
New Active Directory Pentesting Tool For KeyCredentialLink Management - 18 hours ago