ESA-2014-081 RSA® Identity Management and Governance Authentication Bypass Vulnerability

ESA-2014-081.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-081 RSA® Identity Management and Governance Authentication Bypass Vulnerability EMC Identifier: ESA-2014-081 CVE Identifier: CVE-2014-4619 Severity Rating: CVSS v2 Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C Affected products:...

EMC RSA Identity Management and Governance authentication bypass

Authentication bypass if NovellIM is used...

CVE-2014-4619

RSA IMG (EMC RSA Identity Management and Governance) 6.5.x and 6.8.x are affected when Novell Identity Manager is used, enabling authentication bypass with a valid username. Root cause: authentication bypass due to NovellIM-based setup; no password required for legitimate users. Affected versions...