rsa web threat detection vulnerabilities and exploits

(subscribe to this query)

4.3

CVSSv2

EMC RSA Web Threat Detection version 5.0, RSA Web Threat Detection version 5.1, RSA Web Threat Detection version 5.1.2 has a cross site scripting vulnerability that could potentially be exploited by malicious users to compromise the affected system.

Rsa Web Threat Detection 5.0 Rsa Web Threat Detection 5.1 Rsa Web Threat Detection 5.1.2

6.5

CVSSv2

RSA Web Threat Detection versions before 6.4, contain an SQL injection vulnerability in the Administration and Forensics applications. An authenticated malicious user with low privileges could potentially exploit this vulnerability to execute SQL commands on the back-end database...

Rsa Web Threat Detection

6.5

CVSSv2

SQL injection vulnerability in EMC RSA Web Threat Detection 4.x prior to 4.6.1.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Rsa Web Threat Detection

6.8

CVSSv2

Cross-site request forgery (CSRF) vulnerability in EMC RSA Web Threat Detection prior to 5.1 allows remote malicious users to hijack the authentication of arbitrary users.

Rsa Web Threat Detection

4

CVSSv2

EMC RSA Web Threat Detection prior to 5.1 SP1 stores a cleartext AnnoDB password in a configuration file, which allows remote authenticated users to obtain sensitive information by reading this file.

Rsa Web Threat Detection

7.2

CVSSv2

EMC RSA Web Threat Detection prior to 5.1 SP1 allows local users to obtain root privileges by leveraging access to a service account and writing commands to a service configuration file.

Rsa Web Threat Detection

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook