RSA Authentication Agent version 8.0.1 and earlier for Web for both IIS and Apache Web Server are affected by a cross-site scripting vulnerability. The attackers could potentially exploit this vulnerability to execute arbitrary HTML or JavaScript code in the user’s browser session in the context of the affected website.
CPE | Name | Operator | Version |
---|---|---|---|
authentication_agent_for_web | le | 8.0.1 | |
authentication_agent_for_web | le | 8.0.1 |