CVE-2015-0529
First published: Sun Apr 05 2015(Updated: )
EMC PowerPath Virtual Appliance (aka vApp) before 2.0 has default passwords for the (1) emcupdate and (2) svcuser accounts, which makes it easier for remote attackers to obtain potentially sensitive information via a login session.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| EMC PowerPath Virtual Appliance | <=1.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2015-0529?
CVE-2015-0529 is considered a high severity vulnerability due to the use of default passwords for sensitive accounts.
How do I fix CVE-2015-0529?
To fix CVE-2015-0529, update your EMC PowerPath Virtual Appliance to version 2.0 or later and change the default passwords.
What accounts are affected by CVE-2015-0529?
CVE-2015-0529 affects the emcupdate and svcuser accounts that have default passwords.
Who is impacted by CVE-2015-0529?
Organizations using EMC PowerPath Virtual Appliance versions prior to 2.0 are impacted by CVE-2015-0529.
Can CVE-2015-0529 be exploited remotely?
Yes, CVE-2015-0529 can be exploited remotely, allowing attackers to potentially access sensitive information.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/tags
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- vendor/emc
- canonical/emc powerpath virtual appliance
- version/emc powerpath virtual appliance/1.2