CVE-2019-18573 : Security Advisory and Response

RSA Identity Governance & Lifecycle by Dell prior to 7.1.1 P03 is vulnerable to Session Fixation, potentially allowing unauthorized access and actions by attackers.

Understanding CVE-2019-18573

RSA Identity Governance & Lifecycle and RSA Via Lifecycle and Governance products versions prior to 7.1.1 P03 have a vulnerability known as Session Fixation.

What is CVE-2019-18573?

The vulnerability in RSA Identity Governance & Lifecycle products exposes session tokens in URLs, enabling authenticated malicious local users to exploit it. Remote attackers could access victims' sessions and perform unauthorized actions with compromised user privileges.

The Impact of CVE-2019-18573

The vulnerability has a CVSS base score of 8.7, indicating a high severity level with significant impacts on confidentiality and integrity.

Technical Details of CVE-2019-18573

RSA Identity Governance & Lifecycle prior to 7.1.1 P03 is susceptible to Session Fixation.

Vulnerability Description

The vulnerability allows session tokens to be visible in URLs, facilitating unauthorized access and actions by attackers.

Affected Systems and Versions

Product: RSA Identity Governance & Lifecycle
Vendor: Dell
Versions Affected: < 7.1.0 P09, 7.1.1 P03

Exploitation Mechanism

Attack Complexity: Low
Attack Vector: Network
Privileges Required: Low
User Interaction: Required
Scope: Changed
Confidentiality Impact: High
Integrity Impact: High
Availability Impact: None

Mitigation and Prevention

Immediate Steps to Take:

Upgrade to version 7.1.1 P03 or later to mitigate the vulnerability.
Monitor and restrict access to sensitive URLs containing session tokens. Long-Term Security Practices:
Implement secure session management practices.
Regularly review and update security configurations.
Educate users on safe browsing habits and session security. Patch and Updates:
Apply security patches and updates provided by Dell to address the vulnerability.