CVE Number – CVE-2020-5384
The RSA MFA Agent version 2.0 for Microsoft Windows contains an Authentication Bypass vulnerability.
A local unauthenticated attacker could potentially exploit this vulnerability by using an alternate path to bypass authentication in order to gain full access to the system.
The following RSA MFA Agent for Microsoft Windows release contains a resolution to this vulnerability:
- RSA® MFA Agent 2.0.1 for Microsoft Windows and later
RSA recommends all customers upgrade at the earliest opportunity.