Vulnerabilities > EMC > RSA Data Loss Prevention

DATE CVE VULNERABILITY TITLE RISK
2016-05-03 CVE-2016-0895 Improper Input Validation vulnerability in EMC RSA Data Loss Prevention
EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote attackers to conduct clickjacking attacks via web-site elements with crafted transparency or opacity.
network
emc CWE-20
4.3
4.3
2016-05-03 CVE-2016-0894 7PK - Security Features vulnerability in EMC RSA Data Loss Prevention
EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote authenticated users to bypass intended object access restrictions via a modified parameter.
network
low complexity
emc CWE-254
6.5
6.5
2016-05-03 CVE-2016-0893 Information Exposure vulnerability in EMC RSA Data Loss Prevention
EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote authenticated users to obtain sensitive information by reading error messages.
network
low complexity
emc CWE-200
4.0
4.0
2016-05-03 CVE-2016-0892 Cross-site Scripting vulnerability in EMC RSA Data Loss Prevention
Cross-site scripting (XSS) vulnerability in EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
emc CWE-79
4.3
4.3
2014-03-06 CVE-2014-0624 Unspecified vulnerability in EMC RSA Data Loss Prevention 9.0/9.5/9.6
EMC RSA Data Loss Prevention (DLP) 9.x before 9.6-SP2 does not properly manage sessions, which allows remote authenticated users to gain privileges and bypass intended content-reading restrictions via unspecified vectors.
low complexity
emc
2.7
2.7