Unrated severityNVD Advisory· Published Sep 11, 2019· Updated Sep 17, 2024
CVE-2019-3760
CVE-2019-3760
Description
The RSA Identity Governance and Lifecycle software and RSA Via Lifecycle and Governance products prior to 7.1.0 P08 contain a SQL Injection vulnerability in Workflow Architect. A remote authenticated malicious user could potentially exploit this vulnerability to execute SQL commands on the back-end database to gain unauthorized access to the data by supplying specially crafted input data to the affected application.
Affected products
3- Range: <7.1.0 P08
- Dell/RSA Identity Governance and Lifecyclev5Range: unspecified
- Dell/RSA Via Lifecycle and Governancev5Range: 7.0
Patches
Vulnerability mechanics
References
1- community.rsa.com/docs/DOC-106943mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.