RSA Authentication Manager update for third-party components
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 37 |
| CVE-ID | CVE-2024-10978 CVE-2024-12088 CVE-2024-12086 CVE-2023-47108 CVE-2023-45142 CVE-2024-41110 CVE-2024-10977 CVE-2024-10979 CVE-2024-10976 CVE-2024-12087 CVE-2025-21502 CVE-2025-21535 CVE-2024-47554 CVE-2025-21549 CVE-2024-29857 CVE-2024-23635 CVE-2024-12747 CVE-2024-12085 CVE-2024-12133 CVE-2024-42145 CVE-2024-57791 CVE-2022-3435 CVE-2022-48960 CVE-2022-48962 CVE-2022-48967 CVE-2023-46343 CVE-2023-52881 CVE-2024-49974 CVE-2024-20380 CVE-2024-52533 CVE-2025-0167 CVE-2025-0725 CVE-2024-13176 CVE-2024-20505 CVE-2023-20197 CVE-2025-20128 CVE-2018-14679 |
| CWE-ID | CWE-266 CWE-22 CWE-200 CWE-400 CWE-863 CWE-300 CWE-285 CWE-269 CWE-20 CWE-79 CWE-362 CWE-457 CWE-119 CWE-125 CWE-476 CWE-451 CWE-193 CWE-190 CWE-385 CWE-835 CWE-122 CWE-121 |
| Exploitation vector | Network |
| Public exploit | Public exploit code for vulnerability #37 is available. |
| Vulnerable software |
RSA Authentication Manager Web applications / Remote management & hosting panels |
| Vendor | RSA |
Security Bulletin
This security bulletin contains information about 37 vulnerabilities.
1) Incorrect privilege assignment
EUVDB-ID: #VU100513
Risk: Medium
CVSSv4.0: 1.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-10978
CWE-ID:
CWE-266 - Incorrect Privilege Assignment
Exploit availability: No
DescriptionThe vulnerability allows a remote user to escalate privileges within the application.
The vulnerability exists due to incorrect privilege assignment when application uses SET ROLE, SET SESSION AUTHORIZATION, or an equivalent feature. A remote user can force the application to reset their role to a wrong user ID and view or change different rows from those intended.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Path traversal
EUVDB-ID: #VU102736
Risk: Medium
CVSSv4.0: 2.1 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-12088
CWE-ID:
CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Exploit availability: No
DescriptionThe vulnerability allows a remote server to write files to arbitrary locations on the system.
Install update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Information disclosure
EUVDB-ID: #VU102732
Risk: Medium
CVSSv4.0: 2.1 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-12086
CWE-ID:
CWE-200 - Exposure of sensitive information to an unauthorized actor
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to excessive data output by the application when handling checksums. A remote attacker can trick the victim into connecting to an attacker-controlled server and enumerate contents of arbitrary files on the client's machine, basically allowing a rouge server to read contents byte-by-byte of any file on the client's system.
This issue occurs when files are being copied from a client to a server.
Install update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Resource exhaustion
EUVDB-ID: #VU84507
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2023-47108
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to grpc Unary Server Interceptor does not properly control consumption of internal resources when processing multiple requests. A remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Resource exhaustion
EUVDB-ID: #VU83546
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2023-45142
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to incorrect processing of HTTP header User-Agent and HTTP method. A remote attacker can send multiple requests with long randomly generated HTTP methods or/and User agents and consume memory resources, leading to a denial of service condition. MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) Incorrect authorization
EUVDB-ID: #VU94762
Risk: Medium
CVSSv4.0: 7.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:U/U:Green]
CVE-ID: CVE-2024-41110
CWE-ID:
CWE-863 - Incorrect Authorization
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass authorization checks.
The vulnerability exists due to AuthZ zero length regression. A remote user can bypass authentication and gain elevated privileges.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
7) Man-in-the-Middle (MitM) attack
EUVDB-ID: #VU100512
Risk: Low
CVSSv4.0: 0.5 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-10977
CWE-ID:
CWE-300 - Channel Accessible by Non-Endpoint ('Man-in-the-Middle')
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to spoof error messages from the database.
The vulnerability exists due to an error in libpq, which allows a server not trusted under current SSL or GSS settings to furnish arbitrary non-NUL bytes to the libpq application. A remote attacker can perform a man-in-the-middle attack to send a long error message that a human or screen-scraper user of psql mistakes for valid query results.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
8) Improper authorization
EUVDB-ID: #VU100514
Risk: High
CVSSv4.0: 6.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-10979
CWE-ID:
CWE-285 - Improper Authorization
Exploit availability: No
DescriptionThe vulnerability allows a remote user to compromise the affected system.
The vulnerability exists due to incorrect control of environment variables. A remote unprivileged database user can change sensitive process environment variables (e.g. PATH) and execute arbitrary code on the database server.
Install update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
9) Improper privilege management
EUVDB-ID: #VU100511
Risk: Medium
CVSSv4.0: 1.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-10976
CWE-ID:
CWE-269 - Improper Privilege Management
Exploit availability: No
DescriptionThe vulnerability allows a remote user to bypass implemented security restrictions.
The vulnerability exists due to improper privilege management in cases where a subquery, WITH query, security invoker view, or SQL-language function references a table with a row-level security policy. A remote user can bypass implemented security restrictions and gain unauthorized access to the database in cases where role-specific policies are used and a given query is planned under one role and then executed under other roles.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
10) Path traversal
EUVDB-ID: #VU102734
Risk: Medium
CVSSv4.0: 2.1 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-12087
CWE-ID:
CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Exploit availability: No
DescriptionThe vulnerability allows a remote server to write files to arbitrary locations on the system.
The vulnerability exists due to input validation error when using "--inc-recursive" option. A remote attacker can can trick the victim into connecting to a rouge rsync server and write arbitrary files to arbitrary locations on the client system.
Install update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
11) Improper input validation
EUVDB-ID: #VU103159
Risk: Medium
CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-21502
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to read and manipulate data.
The vulnerability exists due to improper input validation within the Hotspot component in Oracle GraalVM Enterprise Edition. A remote non-authenticated attacker can exploit this vulnerability to read and manipulate data.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
12) Improper input validation
EUVDB-ID: #VU103148
Risk: High
CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2025-21535
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
The vulnerability exists due to improper input validation within the Core component in Oracle WebLogic Server. A remote non-authenticated attacker can exploit this vulnerability to execute arbitrary code.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
13) Resource exhaustion
EUVDB-ID: #VU98025
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-47554
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to application does not properly control consumption of internal resources when handling untrusted input passed to the org.apache.commons.io.input.XmlStreamReader class. A remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
14) Improper input validation
EUVDB-ID: #VU103150
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-21549
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the Core component in Oracle WebLogic Server. A remote non-authenticated attacker can exploit this vulnerability to perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
15) Resource exhaustion
EUVDB-ID: #VU89218
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-29857
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to library does not properly control consumption of internal resources when importing an EC certificate with specially crafted F2m parameters. A remote attacker can pass a specially crafted certificate to the application to trigger resource exhaustion and perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
16) Cross-site scripting
EUVDB-ID: #VU86736
Risk: Low
CVSSv4.0: 0.5 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-23635
CWE-ID:
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Exploit availability: No
DescriptionThe disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.
The vulnerability exists due to insufficient sanitization of user-supplied data when parsing comment tags. A remote attacker can inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website.
Successful exploitation of the vulnerability requires that the preserveComments directive is enabled in policy file.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
17) Race condition
EUVDB-ID: #VU102739
Risk: Low
CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-12747
Exploit availability: No
DescriptionThe vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to a race condition when handling symbolic links. A local user can replace a file with a symbolic link, bypass implemented protection in rsync that prevents software from following symbolic links and read contents of arbitrary files on the system with elevated privileges.
Install update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
18) Use of Uninitialized Variable
EUVDB-ID: #VU102730
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-12085
CWE-ID:
CWE-457 - Use of Uninitialized Variable
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to sensitive information.
The vulnerability exists due to information leak when comparing file checksums. A remote attacker can pass specially crafted data to the daemon and read 1 byte of uninitialized memory from stack.
Install update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
19) Resource exhaustion
EUVDB-ID: #VU103980
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-12133
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to application does not properly control consumption of internal resources processing a large number of SEQUENCE OF or SET OF elements in a certificate. A remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
20) Buffer overflow
EUVDB-ID: #VU95054
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-42145
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the MODULE_AUTHOR(), __get_agent(), send_handler(), recv_handler() and ib_umad_read() functions in drivers/infiniband/core/user_mad.c. A local user can perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
21) Input validation error
EUVDB-ID: #VU102990
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-57791
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the smc_clc_wait_msg() function in net/smc/smc_clc.c. A local user can perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
22) Out-of-bounds read
EUVDB-ID: #VU70499
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-3435
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition within the fib_nh_match() function in net/ipv4/fib_semantics.c IPv4 handler. A remote attacker can send specially crafted data to the system, trigger an out-of-bounds read error and read contents of memory on the system.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
23) Input validation error
EUVDB-ID: #VU99207
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2022-48960
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the hix5hd2_rx() function in drivers/net/ethernet/hisilicon/hix5hd2_gmac.c. A local user can perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
24) Input validation error
EUVDB-ID: #VU99208
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2022-48962
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the hisi_femac_rx() function in drivers/net/ethernet/hisilicon/hisi_femac.c. A local user can perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
25) Input validation error
EUVDB-ID: #VU99211
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2022-48967
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the nci_add_new_protocol() function in net/nfc/nci/ntf.c. A local user can perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
26) NULL pointer dereference
EUVDB-ID: #VU86243
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-46343
CWE-ID:
CWE-476 - NULL Pointer Dereference
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error within the send_acknowledge() function in net/nfc/nci/spi.c. A local user can pass specially crafted data to the system and perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
27) Spoofing attack
EUVDB-ID: #VU89895
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2023-52881
CWE-ID:
CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to an error within the tcp_ack() function in net/ipv4/tcp_input.c, which can result in system accepting ACK responses for bytes that were never sent. A remote attacker can perform spoofing attack.
Install update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
28) Input validation error
EUVDB-ID: #VU99220
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-49974
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the nfs4_state_create_net() function in fs/nfsd/nfs4state.c, within the nfs4_put_copy() and nfsd4_copy() functions in fs/nfsd/nfs4proc.c. A local user can perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
29) Input validation error
EUVDB-ID: #VU88800
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-20380
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient validation of user-supplied input in the HTML file parser. A remote attacker can pass specially crafted input to the application and perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
30) Off-by-one
EUVDB-ID: #VU100566
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-52533
CWE-ID:
CWE-193 - Off-by-one Error
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to an off-by-one error in gio/gsocks4aproxy.c when handling responses from SOCKS4 proxy. A remote attacker can trick the victim into connecting to a malicious SOCKS4 proxy server, trigger an off-by-one error and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
31) Information disclosure
EUVDB-ID: #VU103648
Risk: Low
CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2025-0167
CWE-ID:
CWE-200 - Exposure of sensitive information to an unauthorized actor
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to application can leak credentials when asked to use a .netrc file for credentials and to follow HTTP redirects. A remote attacker can gain access to sensitive information.
Install update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
32) Integer overflow
EUVDB-ID: #VU103646
Risk: High
CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2025-0725
CWE-ID:
CWE-190 - Integer overflow
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to integer overflow when handling gzip decompression of content-encoded HTTP responses with the CURLOPT_ACCEPT_ENCODING option using zlib 1.2.0.3 or older. A remote attacker can send specially crafted response to the application, trigger an integer overflow and execute arbitrary code on the target system.
Install update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
33) Covert Timing Channel
EUVDB-ID: #VU103600
Risk: Medium
CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-13176
CWE-ID:
CWE-385 - Covert Timing Channel
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to recover a private key.
The vulnerability exists due to a timing side-channel in ECDSA signature computations. A remote attacker can recover the private key and decrypt data.
Successful exploitation of the vulnerability requires that the attacker's process must either be located in the same physical computer or must have a very fast network connection with low latency.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
34) Out-of-bounds read
EUVDB-ID: #VU96825
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-20505
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a boundary condition within the PDF file parser. A remote attacker can pass a specially crafted PDF file to the antivirus, trigger an out-of-bounds read error and crash the antivirus engine.
Install update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
35) Infinite loop
EUVDB-ID: #VU79633
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2023-20197
CWE-ID:
CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to infinite loop in the HFS+ file parser. A remote attacker can consume all available system resources and cause denial of service conditions.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
36) Heap-based buffer overflow
EUVDB-ID: #VU103240
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-20128
CWE-ID:
CWE-122 - Heap-based Buffer Overflow
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a boundary error when decrypting OLE2 file format. A remote attacker can pass a specially crafted file to the application, trigger a heap-based buffer overflow and perform a denial of service (DoS) attack.
Install update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
37) Stack-based buffer overflow
EUVDB-ID: #VU14162
Risk: Low
CVSSv4.0: 5.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]
CVE-ID: CVE-2018-14679
CWE-ID:
CWE-121 - Stack-based buffer overflow
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to cause DoS condition on the target system.
The vulnerability exists due to stack-based buffer overflow the read_chunk function, as defined in the mspack/chmd.c source code file. A local attacker can send a specially crafted request that submits malicious input, trigger memory corruption and cause the service to crash.
MitigationInstall update from vendor's website.
Vulnerable software versionsRSA Authentication Manager: 8.7 SP2 - 8.7 SP2 Patch 5
CPE2.3- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 1:*:*:*:*:*:*
- cpe:2.3:a:rsa:rsa_authentication_manager:8.7:SP2 Patch 2:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
