CVE-2018-1233

State: PUBLISHED · Published: 2018-03-30 · Updated: 2024-09-16 · Assigner: dell

Description

RSA Authentication Agent version 8.0.1 and earlier for Web for both IIS and Apache Web Server are affected by a cross-site scripting vulnerability. The attackers could potentially exploit this vulnerability to execute arbitrary HTML or JavaScript code in the user's browser session in the context of the affected website.

CWE

(none)

Affected

Dell EMC / RSA Authentication Agent for Web for IIS, RSA Authentication Agent for Web for Apache Web Server — v=version 8.0.1 and earlier [affected]

CVSS

(none)

References

http://seclists.org/fulldisclosure/2018/Mar/60 mailing-list, x_refsource_FULLDISC
http://www.securitytracker.com/id/1040577 vdb-entry, x_refsource_SECTRACK

Source

cvelistV5-main/cves/2018/1xxx/CVE-2018-1233.json