CVE-2019-3761 Explained : Impact and Mitigation

The Access Request module in the RSA Identity Governance and Lifecycle software and RSA Via Lifecycle and Governance products prior to version 7.1.0 P08 has a stored cross-site scripting vulnerability. This flaw allows a remote authenticated malicious user to inject malicious HTML or JavaScript code into a trusted application data store, leading to code execution in the context of the vulnerable web application.

Understanding CVE-2019-3761

What is CVE-2019-3761?

Stored cross-site scripting vulnerability in RSA Identity Governance and Lifecycle software and RSA Via Lifecycle and Governance products.

The Impact of CVE-2019-3761

This vulnerability has a CVSS base score of 5.4, with medium severity. It can lead to the execution of malicious code by the web browser within the vulnerable web application.

Technical Details of CVE-2019-3761

Vulnerability Description

The vulnerability allows a remote authenticated attacker to inject malicious code into a trusted application data store.

Affected Systems and Versions

RSA Identity Governance and Lifecycle versions less than 7.1.1 P02 and 7.1.0 P08 (custom versions)
RSA Identity Governance and Lifecycle versions 7.0.2 and 7.0.1
RSA Via Lifecycle and Governance version 7.0

Exploitation Mechanism

The flaw can be exploited by a remote authenticated malicious user to store malicious HTML or JavaScript code in the application data store.

Mitigation and Prevention

Immediate Steps to Take

Apply the necessary patches provided by Dell for the affected versions.
Monitor and restrict user access to sensitive areas to prevent unauthorized exploitation.

Long-Term Security Practices

Regularly update and patch software to mitigate known vulnerabilities.
Conduct security training for users to recognize and report suspicious activities.

Patching and Updates

Ensure that all affected systems are updated to versions that contain fixes for the stored cross-site scripting vulnerability.