CVE-2016-0893

EUVD-2016-0904
EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote authenticated users to obtain sensitive information by reading error messages.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 38%
Affected Products (NVD)
VendorProductVersion
emcrsa_data_loss_prevention
9.6
emcrsa_data_loss_prevention
9.6.1
emcrsa_data_loss_prevention
9.6.2
emcrsa_data_loss_prevention
9.6.2.1
emcrsa_data_loss_prevention
9.6.2.2
emcrsa_data_loss_prevention
9.6.2.3
emcrsa_data_loss_prevention
9.6.2.4
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://packetstormsecurity.com/files/136888/RSA-Data-Loss-Prevention-XSS-Information-Disclosure.html
http://seclists.org/bugtraq/2016/May/9
http://www.securitytracker.com/id/1035714
http://packetstormsecurity.com/files/136888/RSA-Data-Loss-Prevention-XSS-Information-Disclosure.html
http://seclists.org/bugtraq/2016/May/9
http://www.securitytracker.com/id/1035714