Critical severity9.8NVD Advisory· Published Mar 16, 2018· Updated Jun 17, 2026
CVE-2017-8013
CVE-2017-8013
Description
EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwords and various privileges. Affected accounts are: "Apollo System Test", "emc.dpa.agent.logon" and "emc.dpa.metrics.logon". An attacker with knowledge of the password could potentially use these accounts via REST APIs to gain unauthorized access to EMC Data Protection Advisor (including potentially access with administrative privileges).
Affected products
1- Range: 6.3.x
Patches
Vulnerability mechanics
References
3- seclists.org/fulldisclosure/2017/Sep/36nvdMailing ListThird Party Advisory
- www.securityfocus.com/bid/100846nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039370nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.