EMC RSA Identity Management and Governance before 6.8.1 P25 and 6.9.x before 6.9.1 P15 and RSA Via Lifecycle and Governance before 7.0.0 P04 allow remote authenticated users to obtain User Detail Popup information via a modified URL.
References
Link | Resource |
---|---|
http://seclists.org/bugtraq/2016/Sep/52 | Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/93108 | |
http://www.securitytracker.com/id/1036896 | |
http://seclists.org/bugtraq/2016/Sep/52 | Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/93108 | |
http://www.securitytracker.com/id/1036896 |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:42
Type | Values Removed | Values Added |
---|---|---|
References | () http://seclists.org/bugtraq/2016/Sep/52 - Third Party Advisory, VDB Entry | |
References | () http://www.securityfocus.com/bid/93108 - | |
References | () http://www.securitytracker.com/id/1036896 - |
Information
Published : 2016-09-24 10:59
Updated : 2024-11-21 02:42
NVD link : CVE-2016-0918
Mitre link : CVE-2016-0918
CVE.ORG link : CVE-2016-0918
JSON object : View
Products Affected
emc
- rsa_identity_management_and_governance
- rsa_via_lifecycle_and_governance
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor