The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of RSA Authentication Manager

Netty: overload via ZlibDecoders
An attacker can trigger an overload via ZlibDecoders of Netty, in order to trigger a denial of service...
CVE-2020-11612, DSA-2020-135, VIGILANCE-VUL-32168
RSA Authentication Manager: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of RSA Authentication Manager, in order to run JavaScript code in the context of the web site...
CVE-2020-5346, DSA-2020-066, DSA-2020-067, VIGILANCE-VUL-31864
tcpdump: out-of-bounds memory reading via EXTRACT_32BITS
An attacker can force a read at an invalid address via EXTRACT_32BITS() of tcpdump, in order to trigger a denial of service, or to obtain sensitive information...
bulletinapr2020, CVE-2018-14466, CVE-2018-19325-REJECT, DLA-1955-1, DLA-1967-1, DSA-2019-168, DSA-2019-169, DSA-4547-1, FEDORA-2019-6db0d5b9d9, FEDORA-2019-85d92df70f, FEDORA-2019-b92ce3144a, FEDORA-2019-d06bc63433, FEDORA-2019-eaa681d33e, HT210788, K04367730, K44551633, K56551263, K86252029, openSUSE-SU-2019:2343-1, openSUSE-SU-2019:2344-1, openSUSE-SU-2019:2345-1, openSUSE-SU-2019:2348-1, SSA:2019-274-01, SUSE-SU-2019:14191-1, SUSE-SU-2019:2669-1, SUSE-SU-2019:2674-1, USN-4221-1, USN-4221-2, USN-4252-1, USN-4252-2, VIGILANCE-VUL-31803
RSA Authentication Manager: Cross Site Scripting via Security Console
An attacker can trigger a Cross Site Scripting via Security Console of RSA Authentication Manager, in order to run JavaScript code in the context of the web site...
CVE-2020-5339, CVE-2020-5340, DSA-2020-052, DSA-2020-053, VIGILANCE-VUL-31696
Netty: information disclosure via HttpObjectDecoder.java Double Content-Length
An attacker can bypass access restrictions to data via HttpObjectDecoder.java Double Content-Length of Netty, in order to obtain sensitive information...
CERTFR-2020-AVI-179, CVE-2019-20445, DLA-2109-1, DLA-2110-1, DSA-2020-066, DSA-2020-067, RHSA-2020:0804-01, RHSA-2020:0805-01, RHSA-2020:0806-01, RHSA-2020:0811-01, RHSA-2020:0951-01, RHSA-2020:0952-01, VIGILANCE-VUL-31614
Netty: information disclosure via HttpObjectDecoder.java HTTP Header Injection
An attacker can bypass access restrictions to data via HttpObjectDecoder.java HTTP Header Injection of Netty, in order to obtain sensitive information...
CERTFR-2020-AVI-179, CVE-2019-20444, DLA-2109-1, DLA-2110-1, DSA-2020-066, DSA-2020-067, RHSA-2020:0804-01, RHSA-2020:0805-01, RHSA-2020:0806-01, RHSA-2020:0811-01, RHSA-2020:0951-01, RHSA-2020:0952-01, VIGILANCE-VUL-31613
SUSE wicked: memory leak via DHCP4 FSM Other Client IDs
An attacker can create a memory leak via DHCP4 FSM Other Client IDs of SUSE wicked, in order to trigger a denial of service...
CVE-2020-7217, DSA-2020-112, openSUSE-SU-2020:0207-1, SUSE-SU-2020:0347-1, SUSE-SU-2020:0351-1, SUSE-SU-2020:0358-1, SUSE-SU-2020:0369-1, SUSE-SU-2020:0370-1, SUSE-SU-2020:0410-1, VIGILANCE-VUL-31542
SUSE wicked: use after free via DHCP6 IA_PD Options
An attacker can force the usage of a freed memory area via DHCP6 IA_PD Options of SUSE wicked, in order to trigger a denial of service, and possibly to run code...
CVE-2019-18903, DSA-2020-112, openSUSE-SU-2020:0207-1, SUSE-SU-2020:0347-1, SUSE-SU-2020:0351-1, SUSE-SU-2020:0358-1, SUSE-SU-2020:0369-1, SUSE-SU-2020:0370-1, SUSE-SU-2020:0410-1, VIGILANCE-VUL-31541
SUSE wicked: memory leak via DHCP4 Missing Message Type
An attacker can create a memory leak via DHCP4 Missing Message Type of SUSE wicked, in order to trigger a denial of service...
CVE-2020-7216, DSA-2020-112, openSUSE-SU-2020:0165-1, SUSE-SU-2020:0263-1, SUSE-SU-2020:0264-1, SUSE-SU-2020:0351-1, SUSE-SU-2020:0358-1, SUSE-SU-2020:0369-1, SUSE-SU-2020:0410-1, VIGILANCE-VUL-31472
SUSE wicked: use after free via DHCP6 Client Options
An attacker can force the usage of a freed memory area via DHCP6 Client Options of SUSE wicked, in order to trigger a denial of service, and possibly to run code...
CVE-2019-18902, DSA-2020-112, openSUSE-SU-2020:0165-1, SUSE-SU-2020:0263-1, SUSE-SU-2020:0264-1, SUSE-SU-2020:0351-1, SUSE-SU-2020:0358-1, SUSE-SU-2020:0369-1, SUSE-SU-2020:0410-1, VIGILANCE-VUL-31471
Our database contains other pages. You can request a free trial to read them.

Display information about RSA Authentication Manager: