RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance, and RSA IMG releases have an uncontrolled search vulnerability. The installation scripts set an environment variable in an unintended manner. A local authenticated malicious user could trick the root user to run malicious code on the targeted system.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
emc rsa identity management and governance 6.9.0 |
||
emc rsa identity management and governance 6.9.1 |
||
emc rsa identity governance and lifecycle 7.1.0 |
||
rsa rsa via lifecycle and governance 7.0 |