Vulnerability Description
EMC Documentum Content Server before 7.0 P20, 7.1 before P18, and 7.2 before P02, when RPC tracing is configured, stores certain obfuscated password data in a log file, which allows remote authenticated users to obtain sensitive information by reading this file.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Emc | Documentum Content Server | 7.0 |
Related Weaknesses (CWE)
References
- http://seclists.org/bugtraq/2015/Aug/86
- http://www.securityfocus.com/bid/76412
- http://www.securitytracker.com/id/1033296
- http://seclists.org/bugtraq/2015/Aug/86
- http://www.securityfocus.com/bid/76412
- http://www.securitytracker.com/id/1033296
FAQ
What is CVE-2015-4536?
CVE-2015-4536 is a vulnerability with a CVSS score of 3.5 (LOW). EMC Documentum Content Server before 7.0 P20, 7.1 before P18, and 7.2 before P02, when RPC tracing is configured, stores certain obfuscated password data in a log file, which allows remote authenticat...
How severe is CVE-2015-4536?
CVE-2015-4536 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-4536?
Check the references section above for vendor advisories and patch information. Affected products include: Emc Documentum Content Server.