CVE-2018-11074

DSA-2018-152: RSA® Authentication Manager Multiple Vulnerabilities

Severity Score

6.1

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

RSA Authentication Manager versions prior to 8.3 P3 are affected by a DOM-based cross-site scripting vulnerability which exists in its embedded MadCap Flare Help files. A remote unauthenticated attacker could potentially exploit this vulnerability by tricking a victim application user to supply malicious HTML or JavaScript code to the browser DOM, which code is then executed by the web browser in the context of the vulnerable web application.

RSA Authentication Manager en versiones anteriores a la 8.3 P3 se ha visto afectado por una vulnerabilidad Cross-Site Scripting (XSS) basado en DOM que existe en sus archivos MadCap Flare Help embebidos. Un atacante remoto no autenticado podría explotar esta vulnerabilidad engañando a un usuario de una aplicación víctima para que proporcione código HTML o JavaScript malicioso al DOM del navegador, cuyo código es ejecutado por el navegador web en el contexto de la aplicación web vulnerable.

*Credits: RSA would like to thank Mantas Juskauskas from SEC Consult Vulnerability for reporting CVE-2018-11074.

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

None

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

None

Integrity

Partial

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2018-05-14 CVE Reserved
2018-09-21 CVE Published
2024-07-06 EPSS Updated
2024-09-16 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CAPEC

References (3)

URL	Tag	Source
http://www.securityfocus.com/bid/105410	Third Party Advisory
http://www.securitytracker.com/id/1041697	Third Party Advisory
https://seclists.org/fulldisclosure/2018/Sep/39	Mailing List

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Rsa Search vendor "Rsa"		Authentication Manager Search vendor "Rsa" for product "Authentication Manager"				<= 8.3 Search vendor "Rsa" for product "Authentication Manager" and version " <= 8.3"		-		Affected
Emc Search vendor "Emc"		Rsa Authentication Manager Search vendor "Emc" for product "Rsa Authentication Manager"				8.3 Search vendor "Emc" for product "Rsa Authentication Manager" and version "8.3"		p1		Affected
Emc Search vendor "Emc"		Rsa Authentication Manager Search vendor "Emc" for product "Rsa Authentication Manager"				8.3 Search vendor "Emc" for product "Rsa Authentication Manager" and version "8.3"		p2		Affected