CVE-2018-15782

Name of the Vulnerable Software and Affected Versions RSA Authentication Manager versions prior to 8.4

Description The issue concerns a relative path traversal vulnerability in the Quick Setup component. This could allow a local attacker to provide a crafted license, potentially granting unauthorized access to the system during the initial deployment of RSA Authentication Manager.

Recommendations For versions prior to 8.4, update to version 8.4 or later to resolve the issue. As a temporary workaround, consider restricting the use of the Quick Setup component until a patch is available. Avoid using crafted licenses during the quick setup deployment to minimize the risk of exploitation.