Lucene search

PRIOn knowledge basePRION:CVE-2012-2281

HistoryJul 05, 2012 - 2:55 p.m.

Design/Logic Flaw

2012-07-0514:55:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:H/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

66.9%

JSON

EMC RSA Access Manager Server 6.x before 6.1 SP4 and RSA Access Manager Agent do not properly validate session tokens after a logout, which might allow remote attackers to conduct replay attacks via unspecified vectors.

CPENameOperatorVersion
access_manager_servereq6.1 sp3
access_manager_servereq6.1 sp2
access_manager_servereq6.1
access_manager_servereq6.1 sp1
access_manager_servereq6.0

Name	Operator	Version
access_manager_server	eq	6.1 sp3
access_manager_server	eq	6.1 sp2
access_manager_server	eq	6.1
access_manager_server	eq	6.1 sp1
access_manager_server	eq	6.0

References

archives.neohapsis.com/archives/bugtraq/2012-07/0037.html

www.securitytracker.com/id?1027220

7.2 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:H/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

66.9%

JSON

Related for PRION:CVE-2012-2281