A Systematic Security Evaluation of OpenClaw and Its Variants

Tool-augmented AI agents substantially extend the practical capabilities of large language models, but they also introduce security risks that cannot be identified through model-only evaluation. In this paper, we present a systematic security assessment of six representative OpenClaw-series agent...

Dell RSA Identity Governance and Lifecycle and RSA Via Lifecycle and Governance Authorization Issues Vulnerabilities

Dell RSA Identity Governance and Lifecycle and RSA Via Lifecycle and Governance are a suite of authentication and lifecycle management solutions from Dell, USA. An authorization issue vulnerability exists in Dell RSA Identity Governance and Lifecycle and RSA Via Lifecycle and Governance versions...

Dell RSA Identity Governance and Lifecycle and RSA Via Lifecycle and Governance Cross-Site Scripting Vulnerabilities (CNVD-2020-03161)

Dell RSA Identity Governance and Lifecycle and RSA Via Lifecycle and Governance are a suite of authentication and lifecycle management solutions from Dell, USA. A cross-site scripting vulnerability exists in Dell RSA Identity Governance and Lifecycle and RSA Via Lifecycle and Governance versions...

CVE-2019-18573

The RSA Identity Governance and Lifecycle and RSA Via Lifecycle and Governance products prior to 7.1.1 P03 contain a Session Fixation vulnerability. An authenticated malicious local user could potentially exploit this vulnerability as the session token is exposed as part of the URL. A remote...

CVE-2018-1245

RSA Identity Lifecycle and Governance versions 7.0.1, 7.0.2 and 7.1.0 contains an authorization bypass vulnerability within the workflow architect component ACM. A remote authenticated malicious user with non-admin privileges could potentially bypass the Java Security Policies. Once bypassed, a...

CVE-2018-11049

RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance, and RSA IMG releases have an uncontrolled search vulnerability. The installation scripts set an environment variable in an unintended manner. A local authenticated malicious user could trick the root user to run malicious co...

Elevation of Privilege Vulnerability in Multiple EMC Products

EMC RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance and RSA Identity Management and Governance are products of EMC Corporation.EMC RSA Identity Governance and Lifecycle is a suite of lifecycle management solutions; EMC RSA Identity Management and Governance IMG is a suite ...

Multiple EMC Products Arbitrary File Upload Vulnerability

EMC RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance, and RSA Identity Management and Governance are products of EMC Corporation.EMC RSA Identity Governance and Lifecycle is a suite of lifecycle management solutions; EMC RSA Identity Management and Governance IMG is a suite...

CVE-2016-0918

EMC RSA Identity Management and Governance before 6.8.1 P25 and 6.9.x before 6.9.1 P15 and RSA Via Lifecycle and Governance before 7.0.0 P04 allow remote authenticated users to obtain User Detail Popup information via a modified URL...