VYPR
Unrated severityNVD Advisory· Published Jul 13, 2012· Updated Jun 16, 2026

CVE-2012-2280

CVE-2012-2280

Description

EMC RSA Authentication Manager 7.1 before SP4 P14 and RSA SecurID Appliance 3.0 before SP4 P14 do not properly use frames, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to a "Cross frame scripting vulnerability."

Affected products

14
  • cpe:2.3:a:emc:rsa_authentication_manager:7.0:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:emc:rsa_authentication_manager:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:rsa_authentication_manager:7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:rsa_authentication_manager:7.1:sp3:*:*:*:*:*:*
    • cpe:2.3:a:emc:rsa_authentication_manager:*:sp4:*:*:*:*:*:*range: <=7.1
    • (no CPE)range: 7.1 before SP4 P14
  • cpe:2.3:a:rsa:authentication_manager:7.1:sp42:*:*:*:*:*:*
  • cpe:2.3:a:rsa:securid_appliance:2.0:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:rsa:securid_appliance:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:rsa:securid_appliance:2.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:rsa:securid_appliance:2.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:rsa:securid_appliance:3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:rsa:securid_appliance:3.0:sp2:*:*:*:*:*:*
    • cpe:2.3:a:rsa:securid_appliance:3.0:sp3:*:*:*:*:*:*
    • cpe:2.3:a:rsa:securid_appliance:3.0:sp4:*:*:*:*:*:*
  • Range: 3.0 before SP4 P14

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.