Securid Web Agent
Monthly
EMC RSA SecurID Web Agent before 8.0 allows physically proximate attackers to bypass the privacy-screen protection mechanism by leveraging an unattended workstation and running DOM Inspector. Rated medium severity (CVSS 6.7), this vulnerability is no authentication required. No vendor patch available.
EMC RSA Authentication API before 8.1 SP1, RSA Web Agent before 5.3.5 for Apache Web Server, RSA Web Agent before 5.3.5 for IIS, RSA PAM Agent before 7.0, and RSA Agent before 6.1.4 for Microsoft. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.
EMC RSA SecurID Web Agent before 8.0 allows physically proximate attackers to bypass the privacy-screen protection mechanism by leveraging an unattended workstation and running DOM Inspector. Rated medium severity (CVSS 6.7), this vulnerability is no authentication required. No vendor patch available.
EMC RSA Authentication API before 8.1 SP1, RSA Web Agent before 5.3.5 for Apache Web Server, RSA Web Agent before 5.3.5 for IIS, RSA PAM Agent before 7.0, and RSA Agent before 6.1.4 for Microsoft. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.