Medium severity5.9NVD Advisory· Published Jul 17, 2017· Updated May 13, 2026

CVE-2017-8006

Description

In EMC RSA Authentication Manager 8.2 SP1 Patch 1 and earlier, a malicious user logged into the Self-Service Console of RSA Authentication Manager as a target user can use a brute force attack to attempt to identify that user's PIN. The malicious user could potentially reset the compromised PIN to affect victim's ability to obtain access to protected resources.

Affected products

EMC Corporation/Rsa Authentication Manager
cpe:2.3:a:emc:rsa_authentication_manager:*:sp1:*:*:*:*:*:*
Range: <=8.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

seclists.org/fulldisclosure/2017/Jul/23nvdMailing ListThird Party Advisory
www.securityfocus.com/bid/99554nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1038879nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.384
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000