{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2024-25066", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2025-02-18T16:05:07.133Z", "dateReserved": "2024-02-04T00:00:00.000Z", "datePublished": "2025-02-17T00:00:00.000Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Authentication Manager", "vendor": "RSA", "versions": [{"lessThan": "8.7 SP2 Patch 1", "status": "affected", "version": "0", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "RSA Authentication Manager before 8.7 SP2 Patch 1 allows XML External Entity (XXE) attacks via a license file, resulting in attacker-controlled files being stored on the product's server. Data exfiltration cannot occur."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-611", "description": "CWE-611 Improper Restriction of XML External Entity Reference", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2025-02-17T21:05:01.979Z"}, "references": [{"url": "https://www.rsa.com/en-us/company/vulnerability-response-policy"}, {"url": "https://community.rsa.com/s/advisories"}, {"url": "https://github.com/KaiwenTM/CVE_POC/blob/main/CVE-2024-25066.txt"}, {"url": "https://community.rsa.com/s/article/RSA-Authentication-Manager-8-7-SP2-Patch-1-Readme"}], "x_generator": {"engine": "enrichogram 0.0.1"}, "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 4.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"}}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:rsa:authentication_manager:*:*:*:*:*:*:*:*", "versionEndExcluding": "8.7 SP2 Patch 1"}]}]}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-02-18T16:05:02.913470Z", "id": "CVE-2024-25066", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-02-18T16:05:07.133Z"}}]}, "dataVersion": "5.1"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-25066", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-02-18T16:05:02.913470Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-02-18T16:00:56.272Z"}}], "cna": {"metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 4.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"}}], "affected": [{"vendor": "RSA", "product": "Authentication Manager", "versions": [{"status": "affected", "version": "0", "lessThan": "8.7 SP2 Patch 1", "versionType": "custom"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://www.rsa.com/en-us/company/vulnerability-response-policy"}, {"url": "https://community.rsa.com/s/advisories"}, {"url": "https://github.com/KaiwenTM/CVE_POC/blob/main/CVE-2024-25066.txt"}, {"url": "https://community.rsa.com/s/article/RSA-Authentication-Manager-8-7-SP2-Patch-1-Readme"}], "x_generator": {"engine": "enrichogram 0.0.1"}, "descriptions": [{"lang": "en", "value": "RSA Authentication Manager before 8.7 SP2 Patch 1 allows XML External Entity (XXE) attacks via a license file, resulting in attacker-controlled files being stored on the product's server. Data exfiltration cannot occur."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-611", "description": "CWE-611 Improper Restriction of XML External Entity Reference"}]}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:rsa:authentication_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "8.7 SP2 Patch 1"}], "operator": "OR"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2025-02-17T21:05:01.979Z"}}}, "cveMetadata": {"cveId": "CVE-2024-25066", "state": "PUBLISHED", "dateUpdated": "2025-02-18T16:05:07.133Z", "dateReserved": "2024-02-04T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2025-02-17T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "RSA Authentication Manager before 8.7 SP2 Patch 1 allows XML External Entity (XXE) attacks via a license file, resulting in attacker-controlled files being stored on the product's server. Data exfiltration cannot occur."}, {"lang": "es", "value": "RSA Authentication Manager anterior a la versi\u00f3n 8.7 SP2 Patch 1 permite ataques de entidad externa XML (XXE) a trav\u00e9s de un archivo de licencia, lo que hace que los archivos controlados por el atacante se almacenen en el servidor del producto. No se puede producir la exfiltraci\u00f3n de datos."}], "id": "CVE-2024-25066", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "cve@mitre.org", "type": "Secondary"}]}, "published": "2025-02-17T21:15:10.993", "references": [{"source": "cve@mitre.org", "url": "https://community.rsa.com/s/advisories"}, {"source": "cve@mitre.org", "url": "https://community.rsa.com/s/article/RSA-Authentication-Manager-8-7-SP2-Patch-1-Readme"}, {"source": "cve@mitre.org", "url": "https://github.com/KaiwenTM/CVE_POC/blob/main/CVE-2024-25066.txt"}, {"source": "cve@mitre.org", "url": "https://www.rsa.com/en-us/company/vulnerability-response-policy"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-611"}], "source": "cve@mitre.org", "type": "Secondary"}]}

{}

{"created": "2025-07-13T21:07:24.166254+00:00", "updated": "2025-07-13T21:07:24.166338+00:00", "vendors": ["rsa", "rsa$PRODUCT$authentication_manager"]}