CVE-2018-15773 – Dell Encryption Enterprise \ Dell Data Protection Encryption Information Disclosure Vulnerability

https://notcve.org/view.php?id=CVE-2018-15773

Dell Encryption (formerly Dell Data Protection | Encryption) v10.1.0 and earlier contain an information disclosure vulnerability. A malicious user with physical access to the machine could potentially exploit this vulnerability to access the unencrypted RegBack folder that contains back-ups of sensitive system files. Dell Encryption (anteriormente Dell Data Protection | Encryption), en versiones v10.1.0 y anteriores, contiene una vulnerabilidad de divulgación de información. Un usuario malicioso con acceso físico a la máquina podría explotar esta vulnerabilidad para acceder a la carpeta RegBack sin cifrar, que contiene copias de seguridad de archivos sensibles del sistema. • https://www.dell.com/support/article/us/en/04/sln314963/dell-encryption-enterprise-dell-data-protection-encryption-information-disclosure-vulnerability?lang=en • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •