CVE-2024-47856

Q: What is the severity of CVE-2024-47856?

CVE-2024-47856 is rated as a high-severity vulnerability due to its potential for exploitation through path interception.

Q: How do I fix CVE-2024-47856?

To fix CVE-2024-47856, upgrade to RSA Authentication Agent version 7.4.7 or later.

Q: What systems are affected by CVE-2024-47856?

CVE-2024-47856 affects RSA Authentication Agent versions prior to 7.4.7.

Q: What is path interception in the context of CVE-2024-47856?

Path interception occurs when an attacker exploits unsecured service paths in filenames, allowing them to place a malicious executable in a higher-level directory.

Q: What are the risks associated with CVE-2024-47856?

The risks include unauthorized execution of malicious code, leading to potential system compromise and data breaches.

Published Nov 24, 2025

Updated

In RSA Authentication Agent before 7.4.7, service paths and shortcut paths may be vulnerable to path interception if the path has one or more spaces and is not surrounded by quotation marks. An adversary can place an executable in a higher-level directory of the path, and Windows will resolve that executable instead of the intended executable.

Affected Software

2 affected components

RSA Authentication Agent<7.4.7

RSA Authentication Agent For Windows<7.4.7

Event History

Nov 24, 2025

CVE Published

via MITRE·12:00 AM

Data Sourced

via MITRE·12:00 AM

Description

Data Sourced

via NVD·10:15 PM

DescriptionSeverityWeaknessAffected Software

Frequently Asked Questions

What is the severity of CVE-2024-47856?

CVE-2024-47856 is rated as a high-severity vulnerability due to its potential for exploitation through path interception.

How do I fix CVE-2024-47856?

To fix CVE-2024-47856, upgrade to RSA Authentication Agent version 7.4.7 or later.

What systems are affected by CVE-2024-47856?

CVE-2024-47856 affects RSA Authentication Agent versions prior to 7.4.7.

What is path interception in the context of CVE-2024-47856?

Path interception occurs when an attacker exploits unsecured service paths in filenames, allowing them to place a malicious executable in a higher-level directory.

What are the risks associated with CVE-2024-47856?

The risks include unauthorized execution of malicious code, leading to potential system compromise and data breaches.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.