VYPR
Unrated severityNVD Advisory· Published May 1, 2014· Updated Jun 17, 2026

CVE-2014-0646

CVE-2014-0646

Description

The runtime WS component in the server in EMC RSA Access Manager 6.1.3 before 6.1.3.39, 6.1.4 before 6.1.4.22, 6.2.0 before 6.2.0.11, and 6.2.1 before 6.2.1.03, when INFO logging is enabled, allows local users to discover cleartext passwords by reading log files.

Affected products

5
  • cpe:2.3:a:emc:rsa_access_manager:6.1:sp3:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:emc:rsa_access_manager:6.1:sp3:*:*:*:*:*:*
    • cpe:2.3:a:emc:rsa_access_manager:6.1:sp4:*:*:*:*:*:*
    • cpe:2.3:a:emc:rsa_access_manager:6.2:-:*:*:*:*:*:*
    • cpe:2.3:a:emc:rsa_access_manager:6.2:sp1:*:*:*:*:*:*
    • (no CPE)range: 6.1.3 < 6.1.3.39, 6.1.4 < 6.1.4.22, 6.2.0 < 6.2.0.11, 6.2.1 < 6.2.1.03

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.