PT-2017-13429 · Emc+1 · Emc Rsa Authentication Agent Api+1

Published

2017-11-29

Updated

2019-10-03

CVE-2017-14378

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions EMC RSA Authentication Agent API version 8.5 RSA Authentication Agent SDK version 8.6

Description The issue allows attackers to bypass authentication due to an error handling problem.

Recommendations For EMC RSA Authentication Agent API version 8.5, at the moment, there is no information about a newer version that contains a fix for this issue. For RSA Authentication Agent SDK version 8.6, at the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2017-14378

Affected Products

Emc Rsa Authentication Agent Api

Rsa Authentication Agent

PT-2017-13429 · Emc+1 · Emc Rsa Authentication Agent Api+1

CVE-2017-14378

Related Identifiers

Affected Products

References · 5