Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
EMC RSA Authentication Agent 7.1.x before 7.1.2 on Windows does not enforce the Quick PIN Unlock timeout feature, which allows physically proximate attackers to bypass the passcode requirement for a screensaved session by entering a PIN after timeout expiration.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EMC RSA Authentication Agent 安全绕过漏洞
Vulnerability Description
RSA Authentication Agent是美国易安信(EMC)公司的一套远程访问请求验证软件。该软件用于拦截远程访问和本地用户或用户组的请求,将其引导至RSA认证管理服务器进行身份验证。 Windows平台上的EMC RSA Authentication Agent 7.1.2之前的7.1.x版本中存在漏洞,该漏洞源于程序没有强制执行Quick PIN Unlock超时功能。通过输入超时之后输入PIN码,物理邻近的攻击者利用该漏洞绕过屏保会话的密码需求。
CVSS Information
N/A
Vulnerability Type
N/A