Advisory ID

13940

Release date

2017-11-22

Last Updated

2017-11-22

Issue Severity

None

Source

Source

CVE-2017-14378

Release date

2017-11-21

CVSS v2 Base Score

10.0 HIGH

Problem Description

A security vulnerability in RSA Authentication Agent API/SDK for C versions 8.5 and 8.6 could potentially lead to authentication bypass in certain limited implementations.

Find more about CVE-2017-14378 from MITRE CVE directory and NIST NVD.

Impact

None.

Affected Products

None - BoKS Manager 7.0 and 7.1 do use RSA Authentication Agent SDK for C version 8.5, but are not affected by this vulnerability.



Workaround

N/A

Obtaining Fixed Software

N/A



External References

CVE-2017-14378 RSA® Authentication Agent SDK for C Error Handling Vulnerability










Still have questions? We can help. Submit a case to Technical Support.

Last Modified On: May 25, 2018