CVE-2024-26309

Опубликовано: 08 мар. 2024

Источник: nvd

CVSS3: 5.3

CVSS3: 7.5

EPSS Низкий

Описание

Archer Platform 6.x before 6.14 P2 HF2 (6.14.0.2.2) contains a sensitive information disclosure vulnerability. An unauthenticated attacker could potentially obtain access to sensitive information via an internal URL.

Ссылки

https://archerirm.com
Product
https://www.archerirm.community/t5/platform-announcements/archer-update-for-multiple-vulnerabilities/ta-p/717102
Not Applicable
https://archerirm.com
Product
https://www.archerirm.community/t5/platform-announcements/archer-update-for-multiple-vulnerabilities/ta-p/717102
Not Applicable

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:archerirm:archer:*:*:*:*:*:*:*:*

Версия от 6.3.0.0 (включая) до 6.14.0.2.2 (исключая)

EPSS

Процентиль: 29%

0.00103

Низкий

5.3 Medium

CVSS3

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-200

Связанные уязвимости

GHSA-c52j-w2rg-37q5

CVSS3: 5.3

github

почти 2 года назад

Archer Platform 6.x before 2024.03 contains a sensitive information disclosure vulnerability. An unauthenticated attacker could potentially obtain access to sensitive information via an internal URL, aka CE-120677.

EPSS

Процентиль: 29%

0.00103

Низкий

5.3 Medium

CVSS3

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-200