Rsa Authentication Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Rsa Authentication Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2018-15782 — CVSS 7.7 (high): The Quick Setup component of RSA Authentication Manager versions prior to 8.4 is vulnerable to a relative path traversal vulnerability. A…
CVE-2018-1247 — CVSS 7.1 (high): RSA Authentication Manager Security Console, version 8.3 and earlier, contains a XML External Entity (XXE) vulnerability. This could…
CVE-2018-11073 — CVSS 6.5 (medium): RSA Authentication Manager versions prior to 8.3 P3 contain a stored cross-site scripting vulnerability in the Operations Console. A…
CVE-2012-2279 — CVSS 6.4 (medium): Open redirect vulnerability in the Security Console in EMC RSA Authentication Manager 7.1 before SP4 P14 and RSA SecurID Appliance 3.0…
CVE-2018-11074 — CVSS 6.1 (medium): RSA Authentication Manager versions prior to 8.3 P3 are affected by a DOM-based cross-site scripting vulnerability which exists in its…
CVE-2018-1248 — CVSS 6.1 (medium): RSA Authentication Manager Security Console, Operation Console and Self-Service Console, version 8.3 and earlier, is affected by a Host…
CVE-2019-3711 — CVSS 5.8 (medium): RSA Authentication Manager versions prior to 8.4 P1 contain an Insecure Credential Management Vulnerability. A malicious Operations Console…
CVE-2018-11075 — CVSS 5.8 (medium): RSA Authentication Manager versions prior to 8.3 P3 contain a reflected cross-site scripting vulnerability in a Security Console page. A…
CVE-2012-2280 — CVSS 5.0 (medium): EMC RSA Authentication Manager 7.1 before SP4 P14 and RSA SecurID Appliance 3.0 before SP4 P14 do not properly use frames, which allows…
CVE-2019-18574 — CVSS 4.8 (medium): RSA Authentication Manager software versions prior to 8.4 P8 contain a stored cross-site scripting vulnerability in the Security Console. A…
CVE-2012-2278 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in the (1) Self-Service Console and (2) Security Console in EMC RSA Authentication…
CVE-2013-3273 — CVSS 2.1 (low): EMC RSA Authentication Manager 8.0 before P2 and 7.1 before SP4 P26, as used in Appliance 3.0, does not omit the cleartext administrative…
CVE-2013-0947 — CVSS 2.1 (low): EMC RSA Authentication Manager 8.0 before P1 allows local users to discover cleartext operating-system passwords, HTTP plug-in proxy…