CVE-2010-3018

Published: Sep 9, 2010Modified: Apr 29, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

RSA Access Manager Server 5.5.3 before 5.5.3.172, 6.0.4 before 6.0.4.53, and 6.1 before 6.1.2.01 does not properly perform cache updates, which allows remote attackers to obtain sensitive information via unspecified vectors.

Affected (3)

Products: Rsa: Access Manager Server

Rsa

1 product

Access Manager Server

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Rsa Access Manager Server	Version 5.5.3
Rsa Access Manager Server	Version 6.0.4
Rsa Access Manager Server	Version 6.1

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (2)

http://archives.neohapsis.com/archives/bugtraq/2010-09/0056.html

Source: security_alert@emc.com

http://archives.neohapsis.com/archives/bugtraq/2010-09/0056.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.