CVE-2012-2281
Severity CVSS v4.0:
Pending analysis
Type:
CWE-287
Authentication Issues
Publication date:
05/07/2012
Last modified:
22/03/2013
Description
EMC RSA Access Manager Server 6.x before 6.1 SP4 and RSA Access Manager Agent do not properly validate session tokens after a logout, which might allow remote attackers to conduct replay attacks via unspecified vectors.
Impact
Base Score 2.0
6.80
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:rsa:access_manager_agent:*:*:*:*:*:*:*:* | ||
cpe:2.3:a:rsa:access_manager_server:6.0:*:*:*:*:*:*:* | ||
cpe:2.3:a:rsa:access_manager_server:6.1:*:*:*:*:*:*:* | ||
cpe:2.3:a:rsa:access_manager_server:6.1:sp1:*:*:*:*:*:* | ||
cpe:2.3:a:rsa:access_manager_server:6.1:sp2:*:*:*:*:*:* | ||
cpe:2.3:a:rsa:access_manager_server:6.1:sp3:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page