CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-2280

EMC RSA Authentication Manager 7.1 before SP4 P14 and RSA SecurID Appliance 3.0 before SP4 P14 do not properly use frames, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to a "Cross frame scripting vulnerability."

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.4%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2012-2280

Emc » Rsa Authentication Manager » Version: 7.0

cpe:2.3:a:emc:rsa_authentication_manager:7.0
Emc » Rsa Authentication Manager » Version: 7.1

cpe:2.3:a:emc:rsa_authentication_manager:7.1
Rsa » Authentication Manager » Version: 7.1

cpe:2.3:a:rsa:authentication_manager:7.1
Rsa » Securid Appliance » Version: 2.0

cpe:2.3:a:rsa:securid_appliance:2.0
Rsa » Securid Appliance » Version: 2.0.1

cpe:2.3:a:rsa:securid_appliance:2.0.1
Rsa » Securid Appliance » Version: 2.0.2

cpe:2.3:a:rsa:securid_appliance:2.0.2
Rsa » Securid Appliance » Version: 3.0

cpe:2.3:a:rsa:securid_appliance:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-2280

Products

Pricing

Contact Us