3 matches found
ESA-2014-020: RSA Adaptive Authentication (On-Premise) Multiple Vulnerabilities
ESA-2014-020.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-020: RSA Adaptive Authentication On-Premise Multiple Vulnerabilities EMC Identifier: ESA-2014-020 CVE Identifier: CVE-2014-0637, CVE-2014-0638 Severity Rating: CVSS v2 Base Score: See below for individual scores Affected...
CVE-2014-0637
CVE-2014-0637 is an XSS vulnerability in RSA Adaptive Authentication (On-Premise) back-office case-management, affecting 6.x and 7.x up to 7.1 SP0 P2. The issue allows remote authenticated users to inject arbitrary script/HTML via unspecified vectors. A fix is package 7.1 SP0 P2; RSA recommends u...
RSA Adaptive Authentication (On-Premise)跨站脚本漏洞
CVE ID:CVE-2014-0637 RSA Adaptive Authentication是一款多用于大型金融机构的集中的、多层的认证解决方案。 RSA Adaptive Authentication存在跨站脚本漏洞,允许攻击者构建恶意URI,诱使用户解析,可获得敏感Cookie,劫持会话或在客户端上进行恶意操作。 0 RSA Adaptive Authentication On-Premise 6.x RSA Adaptive Authentication On-Premise 7.x RSA Adaptive Authentication On-Premise 7.1 SP0...