Share:

CVE-2019-3768 - Emc Rsa Authentication Manager

January 4, 2020

Moderate 6.5

RSA Authentication Manager versions prior to 8.4 P7 contain an XML Entity Injection Vulnerability. A remote authenticated malicious user could potentially exploit this vulnerability to cause information disclosure of local system files by supplying specially crafted XML message.

Affected software

Emc Rsa Authentication Manager

Reference links

https://www.dell.com/support/security/en-us/details/DOC-108320/DSA-2019-148-RSA®-Authentication-Manager-Software-XML-Entity-Injection-Vulnerability

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.