What is the severity of CVE-2018-11050?

CVE-2018-11050 has a medium severity rating due to the exposure of user credentials over an unencrypted network.

How do I fix CVE-2018-11050?

To fix CVE-2018-11050, upgrade to a patched version of Dell EMC NetWorker that resolves the clear-text authentication vulnerability.

Which versions of Dell EMC NetWorker are affected by CVE-2018-11050?

CVE-2018-11050 affects Dell EMC NetWorker versions from 9.0 to 9.1.1.8, and also version 18.1.0.1.

What component is vulnerable in CVE-2018-11050?

The Rabbit MQ Advanced Message Queuing Protocol (AMQP) component is vulnerable in CVE-2018-11050.

What type of vulnerability is CVE-2018-11050?

CVE-2018-11050 is categorized as a clear-text authentication vulnerability that exposes user credentials.

Vulnerability/
CVE-2018-11050

high

8.8

CWE

319 522

25/7/2018

5/8/2024

CVE-2018-11050

First published: Wed Jul 25 2018(Updated: )

Dell EMC NetWorker versions between 9.0 and 9.1.1.8 through 9.2.1.3, and the version 18.1.0.1 contain a Clear-Text authentication over network vulnerability in the Rabbit MQ Advanced Message Queuing Protocol (AMQP) component. User credentials are sent unencrypted to the remote AMQP service. An unauthenticated attacker in the same network collision domain, could potentially sniff the password from the network and use it to access the component using the privileges of the compromised user.

Credit: security_alert@emc.com

Affected Software	Affected Version	How to fix
Dell EMC NetWorker	<=9.0
Dell EMC NetWorker	>=9.1.1.8<=9.2.1.3
Dell EMC NetWorker	=18.1.0.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2018-11050?
CVE-2018-11050 has a medium severity rating due to the exposure of user credentials over an unencrypted network.
How do I fix CVE-2018-11050?
To fix CVE-2018-11050, upgrade to a patched version of Dell EMC NetWorker that resolves the clear-text authentication vulnerability.
Which versions of Dell EMC NetWorker are affected by CVE-2018-11050?
CVE-2018-11050 affects Dell EMC NetWorker versions from 9.0 to 9.1.1.8, and also version 18.1.0.1.
What component is vulnerable in CVE-2018-11050?
The Rabbit MQ Advanced Message Queuing Protocol (AMQP) component is vulnerable in CVE-2018-11050.
What type of vulnerability is CVE-2018-11050?
CVE-2018-11050 is categorized as a clear-text authentication vulnerability that exposes user credentials.

agent/weakness
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/references
agent/author
agent/last-modified-date
agent/event
agent/description
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/dell
canonical/dell emc networker
version/dell emc networker/9.0
version/dell emc networker/9.1.1.8
version/dell emc networker/9.2.1.3
version/dell emc networker/18.1.0.1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.