CVE-2018-1253

Name of the Vulnerable Software and Affected Versions RSA Authentication Manager Operation Console versions 8.3 P1 and earlier

Description The issue allows a malicious Operations Console administrator to store arbitrary HTML or JavaScript code through the web interface, potentially executing injected scripts in the browsers of other Operations Console administrators when they open the affected page.

Recommendations For RSA Authentication Manager Operation Console versions 8.3 P1 and earlier, update to a version later than 8.3 P1 to resolve the issue.