CVE-2012-2278

EMC Rsa Authentication Manager < 7.1 - XSS

Title source: rule

Description

Multiple cross-site scripting (XSS) vulnerabilities in the (1) Self-Service Console and (2) Security Console in EMC RSA Authentication Manager 7.1 before SP4 P14 and RSA SecurID Appliance 3.0 before SP4 P14 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (1)

[Third Party Advisory] http://archives.neohapsis.com/archives/bugtraq/2012-07/0064.html

Scores

EPSS 0.0020

EPSS Percentile 42.1%

Classification

CWE

CWE-79

Status published

Affected Products (13)

emc/rsa_authentication_manager < 7.1

emc/rsa_authentication_manager

rsa/authentication_manager

rsa/securid_appliance

n/a/n/a

Timeline

Published Jul 13, 2012

Tracked Since Feb 18, 2026