CVE-2011-2737

RSA enVision < 4 SP4 P3 - Unauthenticated Arbitrary File Read

Title source: llm
STIX 2.1

Description

RSA enVision 3.x and 4.x before 4 SP4 P3 allows remote attackers to read arbitrary files via unspecified vectors, related to an "arbitrary file retrieval vulnerability."

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/519395/100/0/threaded
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/8350
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1025979

Scores

EPSS 0.0123
EPSS Percentile 65.3%

Details

CWE
CWE-200
Status published
Products (7)
rsa/envision 3.3.6_build_0115
rsa/envision 3.5.0
rsa/envision 3.5.1
rsa/envision 3.5.2
rsa/envision 3.7.0 (2 CPE variants)
rsa/envision 4.0 sp1 (3 CPE variants)
rsa/envision < 4.0
Published Aug 25, 2011
Tracked Since Feb 18, 2026