CVE-2017-14369

Опубликовано: 11 окт. 2017

Источник: nvd

CVSS3: 4.3

CVSS2: 4

EPSS Низкий

Описание

RSA Archer GRC Platform prior to 6.2.0.5 is affected by a privilege escalation vulnerability. A low privileged RSA Archer user may potentially exploit this vulnerability to elevate their privileges and export certain application records.

Ссылки

http://seclists.org/fulldisclosure/2017/Oct/12
Mailing List
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/101195
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039518
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2017/Oct/12
Mailing List
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/101195
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039518
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:rsa:archer_grc_platform:*:*:*:*:*:*:*:*

Версия до 6.2.0.4 (включая)

EPSS

Процентиль: 45%

0.00229

Низкий

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-rmjw-86j5-642f