VYPR
Medium severity4.4NVD Advisory· Published Feb 3, 2017· Updated Jun 17, 2026

CVE-2016-6648

CVE-2016-6648

Description

EMC RecoverPoint versions before 4.4.1.1 and EMC RecoverPoint for Virtual Machines versions before 5.0 are affected by sensitive information disclosure vulnerability as a result of incorrect permissions set on a sensitive system file. A malicious administrator with configuration privileges may access this sensitive system file and compromise the affected system.

Affected products

4
  • cpe:2.3:a:emc:recoverpoint:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:emc:recoverpoint:*:*:*:*:*:*:*:*range: <=4.4.1.0
    • (no CPE)range: <4.4.1.1
  • cpe:2.3:a:emc:recoverpoint_for_virtual_machines:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:emc:recoverpoint_for_virtual_machines:*:*:*:*:*:*:*:*range: <=4.0
    • (no CPE)range: <5.0

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.