Arctera eDiscovery Platform Cleartext Password Vulnerability in EVSearcher Command Line

Vulnerability

A vulnerability exists in the Arctera eDiscovery Platform versions prior to 10.3.2, specifically when the Enterprise Vault Collection Module is utilized. The issue involves the placement of a cleartext password on the command line in EVSearcher, potentially exposing sensitive information.

Impact

This vulnerability could lead to the unintentional disclosure of passwords, allowing unauthorized access to sensitive data or systems.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Arctera eDiscovery Platform Cleartext Password Vulnerability in EVSearcher Command Line

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating