{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-01T05:45:42.656","vulnerabilities":[{"cve":{"id":"CVE-2017-8005","sourceIdentifier":"security_alert@emc.com","published":"2017-07-17T14:29:01.187","lastModified":"2025-04-20T01:37:25.860","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The EMC RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance, and RSA IMG products (RSA Identity Governance and Lifecycle versions 7.0.1, 7.0.2, all patch levels; RSA Via Lifecycle and Governance version 7.0, all patch levels; RSA Identity Management and Governance (RSA IMG) versions 6.9.1, all patch levels) are affected by multiple stored cross-site scripting vulnerabilities. Remote authenticated malicious users could potentially inject arbitrary HTML code to the application."},{"lang":"es","value":"Los productos RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance y RSA IMG de EMC (RSA Identity Governance and Lifecycle versiones 7.0.1, 7.0.2, todos los niveles de parches ; RSA Via Lifecycle and Governance versión 7.0, todos los niveles de parches; RSA Identity Management and Governance (RSA IMG) versiones 6.9.1, todos los niveles de parches), están afectadas por múltiples vulnerabilidades de tipo cross-site scripting almacenadas. Los usuarios maliciosos autenticados remotos podrían inyectar código HTML arbitrario a la aplicación."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:N/I:P/A:N","baseScore":3.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.8,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_governance_and_lifecycle:7.0.1:*:*:*:*:*:*:*","matchCriteriaId":"FD65ECE7-AEC0-4996-AA77-A1394CD10E55"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_governance_and_lifecycle:7.0.1.1:*:*:*:*:*:*:*","matchCriteriaId":"C66E2A38-220A-4417-882A-3D12B98F6F31"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_governance_and_lifecycle:7.0.1.2:*:*:*:*:*:*:*","matchCriteriaId":"C2ED5260-0321-47F7-9637-8E5A10BACCB6"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_governance_and_lifecycle:7.0.1.3:*:*:*:*:*:*:*","matchCriteriaId":"1A348908-0266-45AA-9D4E-88CAA301B6E7"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_governance_and_lifecycle:7.0.2:*:*:*:*:*:*:*","matchCriteriaId":"5288389E-1322-4441-A295-045E38B22D11"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_governance_and_lifecycle:7.0.2.1:*:*:*:*:*:*:*","matchCriteriaId":"8EB9C02F-D12B-4CCF-B4F8-3979833FFBA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1:*:*:*:*:*:*:*","matchCriteriaId":"E8784E8C-B027-446D-92E3-E1FF3CA90BA2"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.1:*:*:*:*:*:*:*","matchCriteriaId":"7911EFFA-376A-4BF2-8FF4-3F773820DF8B"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.2:*:*:*:*:*:*:*","matchCriteriaId":"99E085B6-20D0-44D8-BE5F-A93095619076"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.3:*:*:*:*:*:*:*","matchCriteriaId":"06F28360-E854-459B-810E-116000656DD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.4:*:*:*:*:*:*:*","matchCriteriaId":"6CB4F747-283D-4C55-9AC1-2BAE838A53E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.5:*:*:*:*:*:*:*","matchCriteriaId":"DADF9632-E0A8-44F7-8995-93DB5688629E"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.6:*:*:*:*:*:*:*","matchCriteriaId":"8F37E7E2-A7C7-4556-9701-F53EF8CD9AF3"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.7:*:*:*:*:*:*:*","matchCriteriaId":"DDC40E49-B24F-48E2-A952-B368F1821AF8"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.8:*:*:*:*:*:*:*","matchCriteriaId":"E1DADC80-FB42-466A-9411-C1591570CFBE"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.9:*:*:*:*:*:*:*","matchCriteriaId":"6D706444-C2CC-4AA6-83B9-1D2145226B79"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.10:*:*:*:*:*:*:*","matchCriteriaId":"09E913D0-CF21-431F-800D-DFC30B3C5485"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.11:*:*:*:*:*:*:*","matchCriteriaId":"7E328640-2653-45FB-943B-5694813C380F"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.12:*:*:*:*:*:*:*","matchCriteriaId":"2FA58360-4AC1-489D-BAD1-D25B162555BB"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.13:*:*:*:*:*:*:*","matchCriteriaId":"819D0E33-9C21-4482-9F5C-8F7E3261D7E0"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.14:*:*:*:*:*:*:*","matchCriteriaId":"BF97A4FA-A118-4603-B0CB-B8DC78D8AE46"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.15:*:*:*:*:*:*:*","matchCriteriaId":"0E086173-5575-4CDE-A289-98E16CFD2E79"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.16:*:*:*:*:*:*:*","matchCriteriaId":"F5FD8890-0E9F-46AD-9414-4B7B32102786"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.17:*:*:*:*:*:*:*","matchCriteriaId":"0A52C830-8381-4182-9BB0-4DC4EFD482CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.18:*:*:*:*:*:*:*","matchCriteriaId":"BB75A283-EA87-4937-89CB-499AA9E1C6E8"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.19:*:*:*:*:*:*:*","matchCriteriaId":"ECB5B2A0-FAC9-4BD2-845D-590BC2D101B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.20:*:*:*:*:*:*:*","matchCriteriaId":"CD73332D-C5F1-414A-9849-071F52A635AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.21:*:*:*:*:*:*:*","matchCriteriaId":"015FEE26-3158-4C89-A7E0-7ABAE87AE769"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.22:*:*:*:*:*:*:*","matchCriteriaId":"73001754-E19F-40DF-95EF-7BE802365DA0"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.23:*:*:*:*:*:*:*","matchCriteriaId":"9BD8248E-6DF0-4D83-B048-11168A74AA95"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:rsa_identity_management_and_governance:6.9.1.24:*:*:*:*:*:*:*","matchCriteriaId":"1ED2552E-20B5-4A96-AB45-EDE8C9CDD346"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsa:rsa_via_lifecycle_and_governance:7.0:*:*:*:*:*:*:*","matchCriteriaId":"EDB09176-507F-4A9E-A316-561BE6D7725F"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsa:rsa_via_lifecycle_and_governance:7.0.0.1:*:*:*:*:*:*:*","matchCriteriaId":"4765B8C0-A9C2-4D99-9D9B-9FEB8D9A8482"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsa:rsa_via_lifecycle_and_governance:7.0.0.2:*:*:*:*:*:*:*","matchCriteriaId":"C3D8C9C5-613A-4B7F-9654-1D11C08F166F"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsa:rsa_via_lifecycle_and_governance:7.0.0.3:*:*:*:*:*:*:*","matchCriteriaId":"D0F5A118-16A6-42A7-A804-F0974E30AC77"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsa:rsa_via_lifecycle_and_governance:7.0.0.4:*:*:*:*:*:*:*","matchCriteriaId":"964AEB79-478C-44A7-B17A-787ED1EE5CBA"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsa:rsa_via_lifecycle_and_governance:7.0.0.5:*:*:*:*:*:*:*","matchCriteriaId":"CBBE6361-CD6C-4B18-9D99-849A67081A43"}]}]}],"references":[{"url":"http://seclists.org/fulldisclosure/2017/Jul/24","source":"security_alert@emc.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/99591","source":"security_alert@emc.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1038877","source":"security_alert@emc.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://seclists.org/fulldisclosure/2017/Jul/24","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/99591","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1038877","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]}]}}]}