Описание
RSA Archer 6.8 through 6.8.0.3 and 6.9 contains a URL injection vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability by tricking a victim application user into executing malicious JavaScript code in the context of the web application.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 6.8 (включая) до 6.8.0.3 (включая)
Одно из
cpe:2.3:a:rsa:archer:*:*:*:*:*:*:*:*
cpe:2.3:a:rsa:archer:6.9:*:*:*:*:*:*:*
EPSS
Процентиль: 64%
0.00469
Низкий
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-74
Связанные уязвимости
github
больше 3 лет назад
RSA Archer 6.8 through 6.8.0.3 and 6.9 contains a URL injection vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability by tricking a victim application user into executing malicious JavaScript code in the context of the web application.
EPSS
Процентиль: 64%
0.00469
Низкий
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-74