← volver
CVE-2018-11049

RSA Identity Governance and Lifecycle Uncontrolled Search Path Vulnerability

EPSS 0.4%
RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance, and RSA IMG releases have an uncontrolled search vulnerability. The installation scripts set an environment variable in an unintended manner. A local authenticated malicious user could trick the root user to run malicious code on the targeted system.
Productos afectados
Pivotal · Pivotal Operations Manager

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://seclists.org/fulldisclosure/2018/Jul/23http://www.securityfocus.com/bid/104722http://www.securitytracker.com/id/1041228