RSA Authentication Agent version 8.0.1 and earlier for Web for both IIS and Apache Web Server are affected by a cross-site scripting vulnerability. The attackers could potentially exploit this vulnerability to execute arbitrary HTML or JavaScript code in the user's browser session in the context of the affected website.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2018/Mar/60 | Mailing List Third Party Advisory |
http://www.securitytracker.com/id/1040577 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: dell
Published: 2018-03-26T00:00:00
Updated: 2018-03-31T09:57:01
Reserved: 2017-12-06T00:00:00
Link: CVE-2018-1233
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-03-30T21:29:01.747
Modified: 2018-04-20T15:06:21.820
Link: CVE-2018-1233
JSON object: View
Redhat Information
No data.
CWE