VYPR
Unrated severityNVD Advisory· Published Jul 13, 2012· Updated Jun 16, 2026

CVE-2012-2278

CVE-2012-2278

Description

Multiple cross-site scripting (XSS) vulnerabilities in the (1) Self-Service Console and (2) Security Console in EMC RSA Authentication Manager 7.1 before SP4 P14 and RSA SecurID Appliance 3.0 before SP4 P14 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

14
  • cpe:2.3:a:emc:rsa_authentication_manager:7.0:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:emc:rsa_authentication_manager:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:rsa_authentication_manager:7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:rsa_authentication_manager:7.1:sp3:*:*:*:*:*:*
    • cpe:2.3:a:emc:rsa_authentication_manager:*:sp4:*:*:*:*:*:*range: <=7.1
    • (no CPE)range: <=7.1 SP4 P14
  • cpe:2.3:a:rsa:authentication_manager:7.1:sp42:*:*:*:*:*:*
  • cpe:2.3:a:rsa:securid_appliance:2.0:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:rsa:securid_appliance:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:rsa:securid_appliance:2.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:rsa:securid_appliance:2.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:rsa:securid_appliance:3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:rsa:securid_appliance:3.0:sp2:*:*:*:*:*:*
    • cpe:2.3:a:rsa:securid_appliance:3.0:sp3:*:*:*:*:*:*
    • cpe:2.3:a:rsa:securid_appliance:3.0:sp4:*:*:*:*:*:*
  • Range: <=3.0 SP4 P14

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.