Home

Description

RSA Authentication Manager Security Console, versions 8.3 P1 and earlier, contains a reflected cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by tricking a victim Security Console administrator to supply malicious HTML or JavaScript code to a vulnerable web application, which is then reflected back to the victim and executed by the web browser.

PUBLISHED Reserved 2017-12-06 | Published 2018-06-21 | Updated 2024-09-17 | Assigner dell

Problem types

Reflected cross-site scripting vulnerability

Product status

Any version
affected

References

www.securityfocus.com/bid/104534 (104534) vdb-entry

www.securitytracker.com/id/1041134 (1041134) vdb-entry

seclists.org/fulldisclosure/2018/Jun/39 (20180612 DSA-2018-107: RSA Authentication Manager Cross-site scripting Vulnerabilities) mailing-list

www.securityfocus.com/bid/104534 (104534) vdb-entry

www.securitytracker.com/id/1041134 (1041134) vdb-entry

seclists.org/fulldisclosure/2018/Jun/39 (20180612 DSA-2018-107: RSA Authentication Manager Cross-site scripting Vulnerabilities) mailing-list

cve.org (CVE-2018-1254)

nvd.nist.gov (CVE-2018-1254)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.