Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Self-Service Portal in EMC RSA Authentication Manager (AM) Prime Self-Service 3.0 and 3.1 before 3.1 1915.42871 allows remote authenticated users to cause a denial of service (PIN change for an arbitrary user) via a modified token serial number within a PIN change request, related to a "direct object reference vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EMC RSA Authentication Manager 权限许可和访问控制问题漏洞
Vulnerability Description
EMC RSA Authentication Manager是美国易安信(EMC)公司的一套集中式二元身份认证软件。该软件可跨物理站点集中管理二元身份认证、安全令牌、方法和用户等。 EMC RSA Authentication Manager Prime Self-Service 3.0版本和3.1 1915.42871之前的3.1版本中的Self-Service Portal存在安全漏洞。远程攻击者可通过修改PIN更改请求中的令牌序列号利用该漏造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A