CVE-2018-1255 is a vulnerability in EMC Rsa Identity Governance Lifecycle
Published on July 13, 2018
Reflected Cross-Site Scripting Vulnerability
RSA Identity Lifecycle and Governance versions 7.0.1, 7.0.2 and 7.1.0 contains a reflected cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by tricking a victim application user to supply malicious HTML or JavaScript code to a vulnerable web application, which is then reflected back to the victim and executed by the web browser.
Products Associated with CVE-2018-1255
Want to know whenever a new CVE is published for EMC Rsa Identity Governance Lifecycle? stack.watch will email you.
Affected Versions
RSA Identity Governance and Lifecycle:- Version version 7.0.1, all patch levels is affected.
- Version version 7.0.2, all patch levels is affected.
- Version version 7.1.0, all patch levels is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.