Описание
In RSA NetWitness (NW) Platform before 12.5.1, even when an administrator revokes the access of a specific user with an active session, an internal threat actor could impersonate the revoked user and gain unauthorized access to sensitive data.
EPSS
Процентиль: 39%
0.00172
Низкий
7.5 High
CVSS3
Дефекты
CWE-276
Связанные уязвимости
github
около 1 года назад
In RSA NetWitness (NW) Platform before 12.5.1, even when an administrator revokes the access of a specific user with an active session, an internal threat actor could impersonate the revoked user and gain unauthorized access to sensitive data.
EPSS
Процентиль: 39%
0.00172
Низкий
7.5 High
CVSS3
Дефекты
CWE-276