CVE-2017-15546

Sažetak

The Security Console in EMC RSA Authentication Manager 8.2 SP1 P6 and earlier is affected by a blind SQL injection vulnerability. Authenticated malicious users could potentially exploit this vulnerability to read any unencrypted data from the database.

Reference

http://seclists.org/fulldisclosure/2018/Jan/81
http://www.securityfocus.com/bid/102838
http://www.securitytracker.com/id/1040268

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:N/A:N

Zadnje važnije ažuriranje

15-02-2018 - 13:26

Objavljeno

25-01-2018 - 03:29