EMC RSA Authentication Agent 7.1.x before 7.1.2 on Windows does not enforce the Quick PIN Unlock timeout feature, which allows physically proximate attackers to bypass the passcode requirement for a screensaved session by entering a PIN after timeout expiration.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Authentication_agent_for_windows | Rsa | 7.1 (including) | 7.1 (including) |
Authentication_agent_for_windows | Rsa | 7.1.1 (including) | 7.1.1 (including) |