{"api_version":"1","generated_at":"2026-04-23T08:38:05+00:00","cve":"CVE-2013-3287","urls":{"html":"https://cve.report/CVE-2013-3287","api":"https://cve.report/api/cve/CVE-2013-3287.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2013-3287","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2013-3287"},"summary":{"title":"CVE-2013-3287","description":"EMC Unisphere for VMAX before 1.6.1.6, when using an unspecified level of debug logging in LDAP configurations, allows local users to discover the cleartext LDAP bind password by reading the console.","state":"PUBLIC","assigner":"security_alert@emc.com","published_at":"2013-11-02 19:55:00","updated_at":"2021-08-05 14:46:00"},"problem_types":["CWE-310"],"metrics":[],"references":[{"url":"http://www.securityfocus.com/bid/63425","name":"63425","refsource":"BID","tags":[],"title":"EMC Unisphere for VMAX Plain Text Password CVE-2013-3287 Local Information Disclosure Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://archives.neohapsis.com/archives/bugtraq/2013-10/0155.html","name":"20131029 ESA-2013-074: EMC Unisphere for VMAX Information Disclosure Vulnerability","refsource":"BUGTRAQ","tags":[],"title":"NEOHAPSIS - Peace of Mind Through Integrity and Insight","mime":"text/html","httpstatus":"-1","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2013-3287","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2013-3287","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2013","cve_id":"3287","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"dell","cpe5":"emc_unisphere","cpe6":"1.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"vmax","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3287","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"dell","cpe5":"emc_unisphere","cpe6":"1.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"vmax","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3287","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"dell","cpe5":"emc_unisphere","cpe6":"1.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"vmax","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3287","vulnerable":"1","versionEndIncluding":"1.6","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"dell","cpe5":"emc_unisphere","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"vmax","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3287","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"emc","cpe5":"unisphere","cpe6":"1.0","cpe7":"-","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"vmax","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3287","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"emc","cpe5":"unisphere","cpe6":"1.1","cpe7":"-","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"vmax","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3287","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"emc","cpe5":"unisphere","cpe6":"1.5","cpe7":"-","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"vmax","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3287","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"emc","cpe5":"unisphere","cpe6":"1.0","cpe7":"-","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"vmax","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3287","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"emc","cpe5":"unisphere","cpe6":"1.1","cpe7":"-","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"vmax","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3287","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"emc","cpe5":"unisphere","cpe6":"1.5","cpe7":"-","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"vmax","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3287","vulnerable":"1","versionEndIncluding":"1.6","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"emc","cpe5":"unisphere","cpe6":"*","cpe7":"-","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"vmax","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"CVE_data_meta":{"ASSIGNER":"security_alert@emc.com","ID":"CVE-2013-3287","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"EMC Unisphere for VMAX before 1.6.1.6, when using an unspecified level of debug logging in LDAP configurations, allows local users to discover the cleartext LDAP bind password by reading the console."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"20131029 ESA-2013-074: EMC Unisphere for VMAX Information Disclosure Vulnerability","refsource":"BUGTRAQ","url":"http://archives.neohapsis.com/archives/bugtraq/2013-10/0155.html"},{"name":"63425","refsource":"BID","url":"http://www.securityfocus.com/bid/63425"}]}},"nvd":{"publishedDate":"2013-11-02 19:55:00","lastModifiedDate":"2021-08-05 14:46:00","problem_types":["CWE-310"],"metrics":{"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:P/I:N/A:N","accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE","baseScore":1.9},"severity":"LOW","exploitabilityScore":3.4,"impactScore":2.9,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:dell:emc_unisphere:1.0:*:*:*:*:vmax:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:dell:emc_unisphere:*:*:*:*:*:vmax:*:*","versionEndIncluding":"1.6","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:dell:emc_unisphere:1.1:*:*:*:*:vmax:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:dell:emc_unisphere:1.5:*:*:*:*:vmax:*:*","cpe_name":[]}]}]}},"legacy_mitre":{"record":{"CveYear":"2013","CveId":"3287","Ordinal":"62932","Title":"CVE-2013-3287","CVE":"CVE-2013-3287","Year":"2013"},"notes":[{"CveYear":"2013","CveId":"3287","Ordinal":"1","NoteData":"EMC Unisphere for VMAX before 1.6.1.6, when using an unspecified level of debug logging in LDAP configurations, allows local users to discover the cleartext LDAP bind password by reading the console.","Type":"Description","Title":null},{"CveYear":"2013","CveId":"3287","Ordinal":"2","NoteData":"2013-11-02","Type":"Other","Title":"Published"}]}}}