Vulnerabilities > CVE-2019-3724 - Unspecified vulnerability in RSA Netwitness Platform and Security Analytics

CVSS 4.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

rsa

NVD

Published: 2019-05-15

Updated: 2020-08-24

Summary

RSA Netwitness Platform versions prior to 11.2.1.1 is vulnerable to an Authorization Bypass vulnerability. A remote low privileged attacker could potentially exploit this vulnerability to gain access to administrative information including credentials.

Vulnerable Configurations

Part	Description	Count
Application	Rsa RSA Netwitness Platform * RSA Security Analytics *	2

Packetstorm

data source	https://packetstormsecurity.com/files/download/152943/SA-20190515-0.txt
id	PACKETSTORM:152943
last seen	2019-05-16
published	2019-05-15
reporter	Mantas Juskauskas
source	https://packetstormsecurity.com/files/152943/RSA-NetWitness-Authorization-Bypass.html
title	RSA NetWitness Authorization Bypass

References

https://community.rsa.com/docs/DOC-104202