Описание
EMC RSA Archer GRC 5.x before 5.5.3 uses cleartext for stored passwords in unspecified circumstances, which allows remote authenticated users to obtain sensitive information by reading database fields.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:emc:rsa_archer_grc:5.5.0:*:*:*:*:*:*:*
cpe:2.3:a:emc:rsa_archer_grc:5.5.1:*:*:*:*:*:*:*
cpe:2.3:a:emc:rsa_archer_grc:5.5.2:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.00456
Низкий
4 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
больше 3 лет назад
EMC RSA Archer GRC 5.x before 5.5.3 uses cleartext for stored passwords in unspecified circumstances, which allows remote authenticated users to obtain sensitive information by reading database fields.
EPSS
Процентиль: 63%
0.00456
Низкий
4 Medium
CVSS2
Дефекты
CWE-200