CVE-2011-2741

Published: Dec 14, 2011Modified: Apr 29, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 SP1 Patch 2, SP1 Patch 3, SP2, SP2 Patch 1, and SP3 does not properly implement Device Recovery and Device Identification, which might allow remote attackers to bypass intended security restrictions on a (1) previously non-registered device or (2) registered device by sending unspecified "data elements."

Affected (5)

Products: Emc: Rsa Adaptive Authentication On Premise

Emc

1 product

Rsa Adaptive Authentication On Premise

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Emc Rsa Adaptive Authentication On Premise	Version 6.0.2.1 sp1_patch2
Emc Rsa Adaptive Authentication On Premise	Version 6.0.2.1 sp1_patch3
Emc Rsa Adaptive Authentication On Premise	Version 6.0.2.1 sp2
Emc Rsa Adaptive Authentication On Premise	Version 6.0.2.1 sp2_patch1
Emc Rsa Adaptive Authentication On Premise	Version 6.0.2.1 sp3

Related CWEs

CWE-264

References (4)

http://www.securityfocus.com/archive/1/520850

Source: security_alert@emc.com

http://www.securitytracker.com/id?1026420

Source: security_alert@emc.com

http://www.securityfocus.com/archive/1/520850

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1026420

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.