The RSA Identity Governance and Lifecycle software and RSA Via Lifecycle and Governance products before 7.1.0 P08 contain a code injection vulnerability. A remote authenticated malicious user could potentially exploit this vulnerability to run custom Groovy scripts to gain limited access to view or modify information on the Workflow system.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dell rsa identity governance and lifecycle 7.0.1 |
||
dell rsa identity governance and lifecycle 7.0.2 |
||
dell rsa identity governance and lifecycle 7.1.0 |
||
dell rsa identity governance and lifecycle 7.1.1 |
||
dell rsa via lifecycle and governance 7.0.0 |