Lucene search
K

260 matches found

CVE
CVE
added 2016/05/07 10:0 a.m.65 views

CVE-2016-0901

EMC RSA Authentication Manager before 8.1 SP1 Patch 14 is affected by CVE-2016-0901, a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Connected sources (NVD/CNVD/Nessus) corroborate the XSS issue and tie it to ...

6.1CVSS6.1AI score0.01624EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2016/05/07 10:0 a.m.21 views

CVE-2016-0901

Cross-site scripting XSS vulnerability in EMC RSA Authentication Manager before 8.1 SP1 P14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-0900...

6.1AI score0.01624EPSS
Exploits0References3
Cvelist
Cvelist
added 2016/05/07 10:0 a.m.22 views

CVE-2016-0900

Cross-site scripting XSS vulnerability in EMC RSA Authentication Manager before 8.1 SP1 P14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-0901...

6.1AI score0.01624EPSS
Exploits0References3
CVE
CVE
added 2016/05/07 10:0 a.m.44 views

CVE-2016-0902

EMC RSA Authentication Manager before 8.1 SP1 Patch 14 is affected by a CRLF injection vulnerability (CVE-2016-0902) that could allow an unauthenticated attacker to inject arbitrary HTTP headers and perform HTTP response splitting in unspecified vectors. Connected sources consistently identify th...

5.3CVSS5.4AI score0.02064EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2016/05/07 10:0 a.m.19 views

CVE-2016-0902

CRLF injection vulnerability in EMC RSA Authentication Manager before 8.1 SP1 P14 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...

5.4AI score0.02064EPSS
Exploits0References3
CVE
CVE
added 2016/05/07 10:0 a.m.44 views

CVE-2016-0900

EMC RSA Authentication Manager prior to 8.1 SP1 Patch 14 is affected by CVE-2016-0900 (and CVE-2016-0901). The vulnerability is an XSS flaw that allows an unauthenticated, remote attacker to inject arbitrary web script or HTML via unspecified vectors in the web interface. The connected Nessus ent...

6.1CVSS6.1AI score0.01624EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/06/12 12:0 a.m.18 views

EMC RSA Authentication Manager 8.x < 8.1 Patch 6 Unspecified URI Redirection

The remote host is running a version of EMC RSA Authentication Manager 8 prior to 8.1 Patch 6. It is, therefore, affected by an unspecified URI redirection vulnerability. An attacker can exploit this vulnerability to redirect users to arbitrary websites. C Tenable Network Security, Inc...

5.8CVSS5.8AI score0.0159EPSS
Exploits0References2
securityvulns
securityvulns
added 2014/12/29 12:0 a.m.50 views

ESA-2014-173: RSA® Authentication Manager Unvalidated Redirect Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-173: RSA® Authentication Manager Unvalidated Redirect Vulnerability EMC Identifier: ESA-2014-173 CVE Identifier: CVE-2014-2516 Severity Rating: CVSS v2 Base Score: 5.8 AV:N/AC:M/Au:N/C:P/I:P/A:N Affected Products: • RSA Authentication Manager...

5.8CVSS0.7AI score0.0159EPSS
Exploits0
securityvulns
securityvulns
added 2014/12/29 12:0 a.m.49 views

EMC RSA Authentication Manager open redirect

No description provided...

5.8CVSS3.4AI score0.0159EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2014/12/12 6:59 p.m.22 views

CVE-2014-2516

Open redirect vulnerability in EMC RSA Authentication Manager 8.x before 8.1 Patch 6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...

5.8CVSS6.7AI score0.0159EPSS
Exploits0References1
Prion
Prion
added 2014/12/12 6:59 p.m.17 views

Open redirect

Open redirect vulnerability in EMC RSA Authentication Manager 8.x before 8.1 Patch 6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...

5.8CVSS7.2AI score0.0159EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2014/12/12 6:0 p.m.24 views

CVE-2014-2516

Open redirect vulnerability in EMC RSA Authentication Manager 8.x before 8.1 Patch 6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...

6.7AI score0.0159EPSS
Exploits0References1
CVE
CVE
added 2014/12/12 6:0 p.m.67 views

CVE-2014-2516

Open redirect in EMC RSA Authentication Manager 8.x prior to 8.1 Patch 6 allows remote attackers to redirect users to arbitrary websites, potentially aiding phishing. Affected product: RSA Authentication Manager 8.x. Vulnerable component/condition: unspecified URI redirection; root cause describe...

5.8CVSS6.9AI score0.0159EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2014/10/10 10:0 a.m.19 views

CVE-2014-3402

The authentication-manager process in the web framework in Cisco Intrusion Prevention System IPS 7.08E4 and earlier in Cisco Intrusion Detection System IDS does not properly manage user tokens, which allows remote attackers to cause a denial of service temporary MainApp hang via a crafted...

6.6AI score0.01345EPSS
Exploits0References2
CVE
CVE
added 2014/10/10 10:0 a.m.50 views

CVE-2014-3402

CVE-2014-3402 affects Cisco IPS/IDS web framework: authentication-manager mismanages user tokens, enabling an authenticated remote attacker to trigger a DoS (MainApp hang) via a crafted request to the management interface. Valid for IPS 7.0(8)E4 and earlier. Exploitation requires existing authent...

5CVSS6.8AI score0.01345EPSS
Exploits0References2Affected Software1
Cisco
Cisco
added 2014/10/08 7:28 p.m.22 views

Cisco Intrusion Prevention System MainApp Denial of Service Vulnerability

A vulnerability in the web framework of Cisco Intrusion Prevention System IPS Software could allow an authenticated, remote attacker to cause MainApp to hang intermittently because the authentication manager process creates a denial of service DoS condition. The vulnerability is due to improper...

4CVSS6.6AI score0.01345EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2014/04/04 12:0 a.m.14 views

EMC RSA Authentication Manager Version

Binary data emcrsaamdetect.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2014/04/04 12:0 a.m.17 views

EMC RSA Authentication Manager 7.x < 7.1 SP4 Patch 32 Unspecified XSS

The remote host is running a version of EMC RSA Authentication Manager 7 prior to 7.1 SP4 Patch 32. It is, therefore, affected by an unspecified cross-site scripting vulnerability. An attacker could potentially exploit this vulnerability to compromise the affected system. %NASLMINLEVEL 70300 C...

4.3CVSS5.2AI score0.00977EPSS
Exploits0References2
NVD
NVD
added 2014/03/27 10:55 a.m.15 views

CVE-2014-0623

Cross-site scripting XSS vulnerability in the Self-Service Console in EMC RSA Authentication Manager 7.1 before SP4 P32 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to a "cross frame scripting" issue...

4.3CVSS5.7AI score0.00977EPSS
Exploits0References1
CVE
CVE
added 2014/03/27 10:0 a.m.51 views

CVE-2014-0623

CVE-2014-0623 is an XSS vulnerability in EMC RSA Authentication Manager 7.1 before SP4 Patch 32, specifically in the Self-Service Console related to a cross-frame scripting issue. The underlying issue allows an attacker to inject arbitrary script/HTML via unspecified vectors. Technical details ac...

4.3CVSS5.8AI score0.00977EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder