PT-2020-18444 · Microsoft+1 · Windows+1

Published

2020-07-31

Updated

2025-08-05

CVE-2020-5384

CVSS v3.1

8.4

High

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions RSA MFA Agent 2.0 for Microsoft Windows

Description The issue allows a local unauthenticated attacker to potentially exploit an authentication bypass vulnerability. This could be achieved by using an alternate path to bypass authentication, resulting in full access to the system.

Recommendations For RSA MFA Agent 2.0 for Microsoft Windows, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Authentication

Authentication Bypass Using an Alternate Path or Channel

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287CWE-288

Related Identifiers

CVE-2020-5384

Affected Products

Windows

Rsa Mfa Agent

PT-2020-18444 · Microsoft+1 · Windows+1

CVE-2020-5384

Weakness Enumeration

Related Identifiers

Affected Products

References · 4