Uncontrolled Search Vulnerability in RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance, and RSA IMG Releases
CVE-2018-11049 · MEDIUM Severity
AV:L/AC:M/AU:N/C:C/I:C/A:C
RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance, and RSA IMG releases have an uncontrolled search vulnerability. The installation scripts set an environment variable in an unintended manner. A local authenticated malicious user could trick the root user to run malicious code on the targeted system.
Learn more about our User Device Pen Test.