2 matches found
ESA-2015-151: RSA® OneStep Path Traversal Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-151: RSA® OneStep Path Traversal Vulnerability EMC Identifier: ESA-2015-151 CVE Identifier: CVE-2015-4546 Severity Rating: CVSS v2 Base Score: 7.8 AV:N/AC:L/Au:N/C:C/I:N/A:N Affected Products: RSA OneStep 6.9 prior to Build 559 RSA OneStep...
CVE-2015-4546
EMC RSA OneStep 6.9 prior to Build 559 contains a path traversal vulnerability exploitable by a remote unauthenticated attacker via the KCSOSC_ERROR_PAGE parameter, potentially allowing reading of arbitrary files outside the installation directory. This affects RSA OneStep components used in RSA ...