- EPSS 21.44%
- Published 21.01.2015 15:17:14
- Last modified 12.04.2025 10:46:40
Directory traversal vulnerability in EMC M&R (aka Watch4Net) before 6.5u1 and ViPR SRM before 3.6.1 allows remote authenticated users to read arbitrary files via a crafted URL.
CVE-2015-0515
- EPSS 0.93%
- Published 21.01.2015 15:17:13
- Last modified 12.04.2025 10:46:40
Unrestricted file upload vulnerability in EMC M&R (aka Watch4Net) before 6.5u1 and ViPR SRM before 3.6.1 allows remote authenticated users to execute arbitrary code by uploading and then accessing an executable file.
- EPSS 18.29%
- Published 21.01.2015 15:17:12
- Last modified 12.04.2025 10:46:40
EMC M&R (aka Watch4Net) before 6.5u1 and ViPR SRM before 3.6.1 might allow remote attackers to obtain cleartext data-center discovery credentials by leveraging certain SRM access to conduct a decryption attack.
CVE-2015-0513
- EPSS 0.18%
- Published 21.01.2015 15:17:11
- Last modified 12.04.2025 10:46:40
Multiple cross-site scripting (XSS) vulnerabilities in the administrative user interface in EMC M&R (aka Watch4Net) before 6.5u1 and ViPR SRM before 3.6.1 allow remote authenticated users to inject arbitrary web script or HTML by leveraging privilege...
CVE-2013-6181
- EPSS 0.14%
- Published 28.12.2013 04:53:06
- Last modified 11.04.2025 00:51:21
EMC Watch4Net before 6.3 stores cleartext polled-device passwords in the installation repository, which allows local users to obtain sensitive information by leveraging repository privileges.