Session Token Replay Vulnerability in EMC RSA Access Manager Server 6.x

Session Token Replay Vulnerability in EMC RSA Access Manager Server 6.x

CVE-2012-2281 · MEDIUM Severity

AV:A/AC:H/AU:N/C:C/I:C/A:C

EMC RSA Access Manager Server 6.x before 6.1 SP4 and RSA Access Manager Agent do not properly validate session tokens after a logout, which might allow remote attackers to conduct replay attacks via unspecified vectors.

Learn more about our Cis Benchmark Audit For Server Software.