CVE-2014-0637CVE-2014-0637

Affected configuration(s):

cpe:/a:emc:rsa_adaptive_authentication_on-premise:6.0
cpe:/a:emc:rsa_adaptive_authentication_on-premise:6.0.2.1
cpe:/a:emc:rsa_adaptive_authentication_on-premise:6.0.2.1:sp1_patch2
cpe:/a:emc:rsa_adaptive_authentication_on-premise:6.0.2.1:sp1_patch3
cpe:/a:emc:rsa_adaptive_authentication_on-premise:6.0.2.1:sp2
cpe:/a:emc:rsa_adaptive_authentication_on-premise:6.0.2.1:sp2_patch1
cpe:/a:emc:rsa_adaptive_authentication_on-premise:6.0.2.1:sp3
cpe:/a:emc:rsa_adaptive_authentication_on-premise:6.0.2.1:sp3_p3
cpe:/a:emc:rsa_adaptive_authentication_on-premise:7.0
cpe:/a:emc:rsa_adaptive_authentication_on-premise:7.1

Date published: 2014-04-04T11:09:05.337-04:00

Date last modified: 2014-04-04T12:34:39.997-04:00

CVSS Score: 4.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://archives.neohapsis.com/archives/bugtraq/2014-04/0007.html

Summary: Cross-site scripting (XSS) vulnerability in the back-office case-management application in RSA Adaptive Authentication (On-Premise) 6.x and 7.x before 7.1 SP0 P2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.