CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2017-14378

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1760%
EPSS Percentile6.75th
Published2017年11月29日
Last Modified2026年5月13日

Vulnerability Description

EMC RSA Authentication Agent API 8.5 for C and RSA Authentication Agent SDK 8.6 for C allow attackers to bypass authentication, aka an "Error Handling Vulnerability."

Affected Platforms (CPE)

📦
Emc

Rsa Authentication Agent Api For C

= 8.5
📦
Emc

Rsa Authentication Agent Sdk For C

= 8.6

References & Advisories

🔗 http://seclists.org/fulldisclosure/2017/Nov/48
🔗 http://www.securityfocus.com/bid/101979
🔗 http://www.securitytracker.com/id/1039877
🔗 http://seclists.org/fulldisclosure/2017/Nov/48
🔗 http://www.securityfocus.com/bid/101979
🔗 http://www.securitytracker.com/id/1039877

相關漏洞威脅

CVE-2013-09412.1

EMC RSA Authentication API before 8.1 SP1, RSA Web Agent before 5.3.5 for Apache Web Server, RSA Web Agent before 5.3.5 for IIS, R...

CVE-2017-766410.0

Uploaded XML documents were not correctly validated in Apache OpenMeetings 3.1.0.

CVE-2017-234310.0

The Integrated User Firewall (UserFW) feature was introduced in Junos OS version 12.1X47-D10 on the Juniper SRX Series devices to ...

CVE-2017-792810.0

An Improper Access Control issue was discovered in Schweitzer Engineering Laboratories (SEL) SEL-3620 and SEL-3622 Security Gatewa...