Vulnerability CVE-2018-11049


Published: 2018-07-11

Description:
RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance, and RSA IMG releases have an uncontrolled search vulnerability. The installation scripts set an environment variable in an unintended manner. A local authenticated malicious user could trick the root user to run malicious code on the targeted system.

 References:
http://seclists.org/fulldisclosure/2018/Jul/23

Copyright 2018, cxsecurity.com

 

Back to Top