CVE-2011-2733

EMC Rsa Adaptive Authentication On-premise - Authentication Bypass

Title source: rule

Description

EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 SP1 Patch 2, SP1 Patch 3, SP2, SP2 Patch 1, and SP3 does not prevent reuse of authentication information during a session, which allows remote authenticated users to bypass intended access restrictions via vectors related to knowledge of the originally used authentication information and unspecified other session information.

References (3)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/519346/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/49574

[Third Party Advisory] http://securityreason.com/securityalert/8344

Scores

EPSS 0.0018

EPSS Percentile 38.9%

Classification

CWE

CWE-287

Status draft

Affected Products (5)

emc/rsa_adaptive_authentication_on-premise

Timeline

Published Aug 18, 2011

Tracked Since Feb 18, 2026