Sensitive Information Disclosure in EMC RSA Authentication Manager by RSA Security
CVE-2013-3273

Currently unrated

Key Information:

Vendor: Rsa
Status: Authentication Manager; Rsa Authentication Manager
Vendor: CVE Published:; 8 July 2013

What is CVE-2013-3273?

A sensitive information disclosure vulnerability exists in RSA Authentication Manager versions prior to P2 for 8.0 and SP4 P26 for 7.1. This issue arises due to the inappropriate handling of administrative passwords in custom SDK applications, where these passwords are logged in cleartext within trace log files. Local users with access to these log files could exploit this flaw to retrieve sensitive information, potentially compromising system security and integrity.

References

http://archives.neohapsis.com/archives/bugtraq/2013-07/00...

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jul 8, 2013

Rsa

What is CVE-2013-3273?

References

Timeline