CVE-2018-11073 in EMC and Rsa Products
Published on September 28, 2018
DSA-2018-152: RSA® Authentication Manager Multiple Vulnerabilities
RSA Authentication Manager versions prior to 8.3 P3 contain a stored cross-site scripting vulnerability in the Operations Console. A malicious Operations Console administrator could exploit this vulnerability to store arbitrary HTML or JavaScript code through the web interface. When other Operations Console administrators open the affected page, the injected scripts could potentially be executed in their browser.
Products Associated with CVE-2018-11073
stack.watch emails you whenever new vulnerabilities are published in EMC Rsa Authentication Manager or Rsa Authentication Manager. Just hit a watch button to start following.
Affected Versions
RSA Authentication Manager:- Version unspecified and below 8.3 P3 is affected.
Exploit Probability
EPSS
0.48%
Percentile
64.82%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.