MEDIUM🇬🇧 English

CVE-2013-0931

CVSS 5.4v2.0pub. 2013-03-05upd. 2026-04-29

EMC RSA Authentication Agent 7.1.x before 7.1.2 on Windows does not enforce the Quick PIN Unlock timeout feature, which allows physically proximate attackers to bypass the passcode requirement for a screensaved session by entering a PIN after timeout expiration.

oryginał EN
CVSS Vector
AV:A/AC:M/Au:N/C:P/I:P/A:P
  • Microsoft Windows 2003 Server

    OS
    Microsoft
    wszystkie wersje
  • Microsoft Windows Xp

    OS
    Microsoft
    wszystkie wersje
  • Rsa Authentication Agent For Windows

    APP
    Rsa
    7.17.1.1
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2014-1776CRITICAL9.8⚠ KEVten sam produkt

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute ar...

CVE-2008-4250CRITICAL9.8⚠ KEVten sam produkt

The Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1,...

CVE-2024-47856CRITICAL9.8PL ✓ten sam produkt

RSA Authentication Agent – podatność path interception (unquoted service path)

CVE-2019-5620CRITICAL9.8ten sam produkt

ABB MicroSCADA Pro SYS600 version 9.3 suffers from an instance of CWE-306: Missing Authentication for Critical...

CVE-2020-7485CRITICAL9.8ten sam produkt

**VERSION NOT SUPPORTED WHEN ASSIGNED** A legacy support account in the TriStation software version v4.9.0 and...