CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-1253

RSA Authentication Manager Operation Console, versions 8.3 P1 and earlier, contains a stored cross-site scripting vulnerability. A malicious Operations Console administrator could potentially exploit this vulnerability to store arbitrary HTML or JavaScript code through the web interface. When other Operations Console administrators open the affected page, the injected scripts could potentially be executed in their browser.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.6%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

Products affected by CVE-2018-1253

Emc » Rsa Authentication Manager » Version: N/A

cpe:2.3:a:emc:rsa_authentication_manager:-
Emc » Rsa Authentication Manager » Version: 6.0

cpe:2.3:a:emc:rsa_authentication_manager:6.0
Emc » Rsa Authentication Manager » Version: 6.1

cpe:2.3:a:emc:rsa_authentication_manager:6.1
Emc » Rsa Authentication Manager » Version: 7.0

cpe:2.3:a:emc:rsa_authentication_manager:7.0
Emc » Rsa Authentication Manager » Version: 7.1

cpe:2.3:a:emc:rsa_authentication_manager:7.1
Emc » Rsa Authentication Manager » Version: 8.0

cpe:2.3:a:emc:rsa_authentication_manager:8.0
Emc » Rsa Authentication Manager » Version: 8.1

cpe:2.3:a:emc:rsa_authentication_manager:8.1
Emc » Rsa Authentication Manager » Version: 8.2

cpe:2.3:a:emc:rsa_authentication_manager:8.2
Emc » Rsa Authentication Manager » Version: 8.3

cpe:2.3:a:emc:rsa_authentication_manager:8.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-1253

Products

Pricing

Contact Us