CVE-2013-0931

2022-10-0316:15:02

CWE-16

[email protected]

web.nvd.nist.gov

emc

rsa

authentication

agent

windows

cve-2013-0931

security

vulnerability

5.4 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

25.9%

JSON

EMC RSA Authentication Agent 7.1.x before 7.1.2 on Windows does not enforce the Quick PIN Unlock timeout feature, which allows physically proximate attackers to bypass the passcode requirement for a screensaved session by entering a PIN after timeout expiration.

Affected configurations

NVD

Node

rsaauthentication_agent_for_windowsMatch7.1

rsaauthentication_agent_for_windowsMatch7.1.1

AND

microsoftwindows_2003_server

microsoftwindows_xp

CPENameOperatorVersion
rsa:authentication_agent_for_windowsrsa authentication agent for windowseq7.1
rsa:authentication_agent_for_windowsrsa authentication agent for windowseq7.1.1

CPE	Name	Operator	Version
rsa:authentication_agent_for_windows	rsa authentication agent for windows	eq	7.1
rsa:authentication_agent_for_windows	rsa authentication agent for windows	eq	7.1.1