Vulnerabilities > EMC

DATE CVE VULNERABILITY TITLE RISK
2020-04-15 CVE-2020-5346 Cross-Site Scripting vulnerability in EMC RSA Authentication Manager
RSA Authentication Manager versions prior to 8.4 P11 contain a stored cross-site scripting vulnerability in the Security Console.
network
emc CWE-79
3.5
2020-03-26 CVE-2020-5340 Cross-Site Scripting vulnerability in EMC RSA Authentication Manager
RSA Authentication Manager versions prior to 8.4 P10 contain a stored cross-site scripting vulnerability in the Security Console.
network
emc CWE-79
3.5
2020-03-26 CVE-2020-5339 Cross-Site Scripting vulnerability in EMC RSA Authentication Manager
RSA Authentication Manager versions prior to 8.4 P10 contain a stored cross-site scripting vulnerability in the Security Console.
network
emc CWE-79
3.5
2020-01-03 CVE-2019-3768 XXE vulnerability in EMC RSA Authentication Manager
RSA Authentication Manager versions prior to 8.4 P7 contain an XML Entity Injection Vulnerability.
network
low complexity
emc CWE-611
4.0
2019-12-03 CVE-2019-18574 Cross-Site Scripting vulnerability in multiple products
RSA Authentication Manager software versions prior to 8.4 P8 contain a stored cross-site scripting vulnerability in the Security Console.
network
emc rsa CWE-79
3.5
2019-09-30 CVE-2019-3733 Information Exposure vulnerability in EMC RSA Bsafe Crypto-C
RSA BSAFE Crypto-C Micro Edition, all versions prior to 4.1.4, is vulnerable to three (3) different Improper Clearing of Heap Memory Before Release vulnerability, also known as 'Heap Inspection vulnerability'.
network
low complexity
emc CWE-200
4.0
2019-09-30 CVE-2019-3732 Information Exposure Through Discrepancy vulnerability in EMC RSA Bsafe and RSA Bsafe Crypto-C
RSA BSAFE Crypto-C Micro Edition, versions prior to 4.0.5.3 (in 4.0.x) and versions prior to 4.1.3.3 (in 4.1.x), and RSA Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) versions prior to 4.1.6.1 (in 4.1.x) and versions prior to 4.3.3 (4.2.x and 4.3.x) are vulnerable to an Information Exposure Through Timing Discrepancy.
network
low complexity
emc CWE-203
5.0
2019-09-30 CVE-2019-3731 Information Exposure Through Discrepancy vulnerability in EMC RSA Bsafe and RSA Bsafe Crypto-C
RSA BSAFE Crypto-C Micro Edition versions prior to 4.1.4 and RSA Micro Edition Suite versions prior to 4.4 are vulnerable to an Information Exposure Through Timing Discrepancy.
network
low complexity
emc CWE-203
5.0
2019-09-30 CVE-2019-3730 Information Exposure Through AN Error Message vulnerability in EMC RSA Bsafe
RSA BSAFE Micro Edition Suite versions prior to 4.1.6.3 (in 4.1.x) and prior to 4.4 (in 4.2.x and 4.3.x), are vulnerable to an Information Exposure Through an Error Message vulnerability, also known as a “padding oracle attack vulnerability”.
network
low complexity
emc CWE-209
5.0
2019-09-30 CVE-2019-3729 Classic Buffer Overflow vulnerability in EMC RSA Bsafe
RSA BSAFE Micro Edition Suite versions prior to 4.4 (in 4.0.x, 4.1.x, 4.2.x and 4.3.x) are vulnerable to a Heap-based Buffer Overflow vulnerability when parsing ECDSA signature.
low complexity
emc CWE-120
2.7