1. Home
  2. Mapping Frameworks
  3. CVE Home
  4. Certificate Manager Path Traversal Vulnerability

CVE CVE-2018-11051 Mappings

RSA Certificate Manager Versions 6.9 build 560 through 6.9 build 564 contain a path traversal vulnerability in the RSA CMP Enroll Server and the RSA REST Enroll Server. A remote unauthenticated attacker could potentially exploit this vulnerability by manipulating input parameters of the application to gain unauthorized read access to the files stored on the server filesystem, with the privileges of the running web application.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2018-11051 Certificate Manager Path Traversal Vulnerability primary_impact T1005 Data from Local System
CVE-2018-11051 Certificate Manager Path Traversal Vulnerability exploitation_technique T1190 Exploit Public-Facing Application