SQL Injection Vulnerabilities in EMC RSA enVision by RSA Security
CVE-2012-0401

Currently unrated

Key Information:

Vendor: Rsa
Status: Envision
Vendor: CVE Published:; 20 March 2012

What is CVE-2012-0401?

Multiple SQL injection vulnerabilities exist in EMC RSA enVision versions prior to 4.1 Patch 4. These vulnerabilities can be exploited by remote authenticated users to execute arbitrary SQL commands through various unspecified vectors, potentially compromising the integrity of the database and exposing sensitive information.

References

http://www.securityfocus.com/bid/52557

vdb-entryx_refsource_BID

http://secunia.com/advisories/48484

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/74137

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 20, 2012
Vulnerability Reserved
Jan 9, 2012

Rsa

What is CVE-2012-0401?

References

Timeline