Arbitrary Web Script Injection in EMC RSA Certificate Manager and RSA Registration Manager

Arbitrary Web Script Injection in EMC RSA Certificate Manager and RSA Registration Manager

CVE-2015-0522 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in EMC RSA Certificate Manager (RCM) before 6.9 build 558 and RSA Registration Manager (RRM) before 6.9 build 558 allows remote attackers to inject arbitrary web script or HTML via vectors related to the email address parameter.

Learn more about our Web App Pen Testing.