Envision@4.1 Security Vulnerabilities and Issues — Envision@4.1 CVE List

Lucene search

RsaEnvision4.1

6 matches found

CVE•added 2012/03/20 3:55 p.m.•49 views

CVE-2012-0401

Multiple SQL injection vulnerabilities in EMC RSA enVision 4.x before 4.1 Patch 4 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

6.5CVSS8.3AI score0.0039EPSS

CVE•added 2012/03/20 3:55 p.m.•39 views

CVE-2012-0402

EMC RSA enVision 4.x before 4.1 Patch 4 uses unspecified hardcoded credentials, which makes it easier for remote attackers to obtain access via unknown vectors.

9.3CVSS6.8AI score0.00859EPSS

CVE•added 2012/01/27 12:55 a.m.•36 views

CVE-2011-4143

EMC RSA enVision 4.0 before SP4 P5 and 4.1 before P3 allows remote attackers to obtain sensitive information about environment variables in the web system via unspecified vectors.

5CVSS6.3AI score0.0023EPSS

CVE•added 2012/03/20 3:55 p.m.•36 views

CVE-2012-0399

Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA enVision 4.x before 4.1 Patch 4 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00329EPSS

CVE•added 2012/03/20 3:55 p.m.•36 views

CVE-2012-0403

Directory traversal vulnerability in EMC RSA enVision 4.x before 4.1 Patch 4 allows remote authenticated users to have an unspecified impact via unknown vectors.

6.3CVSS6.5AI score0.00488EPSS

CVE•added 2012/03/20 3:55 p.m.•34 views

CVE-2012-0400

EMC RSA enVision 4.x before 4.1 Patch 4 does not properly restrict the number of failed authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force attack.

7.9CVSS6.9AI score0.00961EPSS