Auth bypass in Emc Rsa_identity_management_and_governance
CVE-2014-4619
EMC RSA Identity Management and Governance (IMG) 6.5.x before 6.5.1 P11, 6.5.2 before P02HF01, and 6.8.x before 6.8.1 P07, when Novell Identity Manager (aka NovellIM) is used, allows remote attackers to bypass authentication via an arbitra…
Vulnerability class: Broken Authentication
EPSS: 0.044 (90.2th percentile) — read the EPSS interpretation.
Affected products
- Emc Rsa_identity_management_and_governance — versions 6.5.0, 6.5.1, 6.5.2
- N/a — versions n/a
Weakness classification (CWE)
References
- security_alert@emc.com (vdb-entry, x_refsource_XF)
- security_alert@emc.com (mailing-list, x_refsource_BUGTRAQ)
- security_alert@emc.com (x_refsource_SECUNIA, third-party-advisory)
- security_alert@emc.com (x_refsource_MISC)
- security_alert@emc.com (vdb-entry, x_refsource_BID)
- security_alert@emc.com (vdb-entry, x_refsource_SECTRACK)