Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
EMC RSA Identity Management and Governance (IMG) 6.9 before P04 and 6.9.1 before P01 does not properly restrict password resets, which allows remote attackers to obtain access via crafted use of the reset process for an arbitrary valid account name, as demonstrated by a privileged account.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EMC RSA Identity Management and Governance 权限许可和访问控制漏洞
Vulnerability Description
EMC RSA Identity Management and Governance(IMG)是美国易安信(EMC)公司的一套企业级身份识别和管理解决方案。该方案支持访问管理、法规遵从性等。 EMC RSA IMG 6.9.0版本和6.9.1版本中存在安全漏洞,该漏洞源于程序没有正确限制密码重置。远程攻击者可通过特制的方式执行任意有效账户名的重置进程,利用该漏洞获取访问权限。
CVSS Information
N/A
Vulnerability Type
N/A