Lucene search

Rsa Data Loss Prevention Security Vulnerabilities - January

cve

CVE-2014-0624

EMC RSA Data Loss Prevention (DLP) 9.x before 9.6-SP2 does not properly manage sessions, which allows remote authenticated users to gain privileges and bypass intended content-reading restrictions via unspecified vectors.

6.6AI Score

0.001EPSS

2014-03-06 11:55 AM

cve

CVE-2016-0892

Cross-site scripting (XSS) vulnerability in EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

6.1CVSS

5.9AI Score

0.002EPSS

2016-05-03 03:59 PM

cve

CVE-2016-0893

EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote authenticated users to obtain sensitive information by reading error messages.

4.3CVSS

4.2AI Score

0.001EPSS

2016-05-03 03:59 PM

cve

CVE-2016-0894

EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote authenticated users to bypass intended object access restrictions via a modified parameter.

6.3CVSS

5.9AI Score

0.002EPSS

2016-05-03 03:59 PM

cve

CVE-2016-0895

EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote attackers to conduct clickjacking attacks via web-site elements with crafted transparency or opacity.

4.3CVSS

4.7AI Score

0.003EPSS

2016-05-03 03:59 PM