PT-2017-16259 · Rsa+1 · Rsa Via Lifecycle/Governance+2
Published
2017-06-09
·
Updated
2022-04-29
·
CVE-2017-5003
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
EMC RSA Identity Governance and Lifecycle versions 7.0.1 through 7.0.2
RSA Via Lifecycle and Governance version 7.0
RSA Identity Management and Governance (IMG) version 6.9.1
Description
The issue is related to Reflected Cross Site Scripting, which could potentially be exploited by malicious users to compromise an affected system.
Recommendations
For EMC RSA Identity Governance and Lifecycle versions 7.0.1 and 7.0.2, update to a version that includes the fix for the Reflected Cross Site Scripting vulnerability.
For RSA Via Lifecycle and Governance version 7.0, update to a version that includes the fix for the Reflected Cross Site Scripting vulnerability.
For RSA Identity Management and Governance (IMG) version 6.9.1, update to a version that includes the fix for the Reflected Cross Site Scripting vulnerability.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Rsa Identity Governance/Lifecycle
Rsa Identity Management/Governance
Rsa Via Lifecycle/Governance