Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
EMC RSA Security Analytics (SA) 10.x before 10.3, and RSA NetWitness NextGen 9.8, does not ensure that SA Core requests originate from the SA REST UI, which allows remote attackers to bypass intended access restrictions by sending a Core request from a web browser or other unintended user agent.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EMC RSA Security Analytics/RSA NetWitness NextGen 未授权访问漏洞
Vulnerability Description
EMC RSA Security Analytics(SA)和RSA NetWitness NextGen都是美国易安信(EMC)公司的产品。EMC RSA SA是一套安全智能分析平台。RSA NetWitness NextGen是一套网络安全监控平台。 EMC RSA SA 10.3之前的10.x版本,RSA NetWitness NextGen 9.8版本中存在安全漏洞,该漏洞源于程序没有验证SA Core请求源是否来自SA REST UI(用户界面)。远程攻击者可通过发送Core请求利用该漏洞绕过既
CVSS Information
N/A
Vulnerability Type
N/A