CVE-2014-5036

The Storage Controller (SC) component in Eucalyptus 3.4.2 through 4.0.x before 4.0.1, when Dell Equallogic SAN is used, logs the CHAP user credentials, which allows local users to obtain sensitive information by reading the logs.

Published: Sep 5, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-5036
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 1.9
AV:L/AC:M/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
eucalyptus / eucalyptus	3.4.2	3.4.2.x
eucalyptus / eucalyptus	3.4.3	3.4.3.x
eucalyptus / eucalyptus	4.0.0	4.0.0.x

http://secunia.com/advisories/60359
http://secunia.com/advisories/60712
https://www.eucalyptus.com/resources/security/advisories/esa-23

Vulnerability Database

CVE-2014-5036