Rsa Authentication Agent Security Vulnerabilities and Issues — Rsa Authentication Agent CVE List

Lucene search

EmcRsa Authentication Agent

3 matches found

CVE•added 2013/05/22 1:29 p.m.•135 views

CVE-2013-0942

Cross-site scripting (XSS) vulnerability in EMC RSA Authentication Agent 7.1 before 7.1.1 for Web for Internet Information Services, and 7.1 before 7.1.1 for Web for Apache, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00496EPSS

CVE•added 2013/08/28 1:13 p.m.•38 views

CVE-2013-3271

EMC RSA Authentication Agent for PAM 7.0 before 7.0.2.1 enforces the maximum number of login attempts within the PAM-enabled application codebase, instead of within the Agent codebase, which makes it easier for remote attackers to discover correct login credentials via a brute-force attack.

5CVSS6.8AI score0.00275EPSS

CVE•added 2013/10/25 3:52 a.m.•38 views

CVE-2013-3280

EMC RSA Authentication Agent 7.1.x before 7.1.2 for Web for Internet Information Services has a fail-open design, which allows remote attackers to bypass intended access restrictions via vectors that trigger an agent crash.

7.5CVSS6.8AI score0.00304EPSS