MEDIUM🇵🇱 Wersja polska

CVE-2019-3724

CVSS 6.5v3.0pub. 2019-05-15upd. 2024-11-21

RSA Netwitness Platform versions prior to 11.2.1.1 is vulnerable to an Authorization Bypass vulnerability. A remote low privileged attacker could potentially exploit this vulnerability to gain access to administrative information including credentials.

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
  • Rsa Netwitness Platform

    APP
    Rsa
    < 11.2.1.1
  • Rsa Security Analytics

    APP
    Rsa
    < 10.6.6.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2019-3725CRITICAL9.8ten sam produkt

RSA Netwitness Platform versions prior to 11.2.1.1 and RSA Security Analytics versions prior to 10.6.6.1 are v...

CVE-2024-47856CRITICAL9.8PL ✓ten sam vendor

RSA Authentication Agent – podatność path interception (unquoted service path)

CVE-2022-30584CRITICAL9.6ten sam vendor

Archer Platform 6.3 before 6.11 (6.11.0.0) contains an Improper Access Control Vulnerability within SSO ADFS f...

CVE-2019-3758CRITICAL9.8ten sam vendor

RSA Archer, versions prior to 6.6 P2 (6.6.0.2), contain an improper authentication vulnerability. The vulnerab...

CVE-2017-14377CRITICAL9.8ten sam vendor

EMC RSA Authentication Agent for Web: Apache Web Server version 8.0 and RSA Authentication Agent for Web: Apac...