N/A

In EMC RSA Authentication Manager 8.2 SP1 Patch 1 and earlier, a malicious user logged into the Self-Service Console of RSA Authentication Manager as a target user can use a brute force attack to attempt to identify that user's PIN. The malicious user could potentially reset the compromised PIN to affect victim's ability to obtain access to protected resources.

N/A

N/A

EMC RSA Authentication Manager 安全漏洞

EMC RSA Authentication Manager是美国易安信（EMC）公司的一套集中式二元身份认证软件。该软件可跨物理站点集中管理二元身份认证、安全令牌、方法和用户等。 EMC RSA Authentication Manager中存在身份验证绕过漏洞。攻击者可利用该漏洞绕过身份验证机制并登录其他用户账户。以下版本受到影响：EMC RSA Authentication Manager 6.1.5版本，8.2 SP1 Patch 1版本，8.1 SP1 Patch 14版本，8.1 Patch

N/A

N/A