Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
archer vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-45358
Archer Platform 6.x prior to 6.13 P2 HF2 (6.13.0.2.2) contains a stored cross-site scripting (XSS) vulnerability. A remote authenticated malicious Archer user could potentially exploit this vulnerability to store malicious HTML or JavaScript code in a trusted application data sto...
Archerirm Archer
2.1
CVSSv2
CVE-2020-5331
RSA Archer, versions before 6.7 P3 (6.7.0.3), contain an information exposure vulnerability. Users’ session information could potentially be stored in cache or log files. An authenticated malicious local user with access to the log files may obtain the exposed information t...
Rsa Archer
5.8
CVSSv2
CVE-2020-5336
RSA Archer, versions before 6.7 P1 (6.7.0.1), contain a URL injection vulnerability. An unauthenticated attacker could potentially exploit this vulnerability by tricking a victim application user to execute malicious JavaScript code on the affected system.
Rsa Archer
5.8
CVSSv2
CVE-2020-5337
RSA Archer, versions before 6.7 P1 (6.7.0.1), contain a URL redirection vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to redirect application users to arbitrary web URLs by tricking the victim users to click on maliciously crafted l...
Rsa Archer
NA
CVE-2023-32759
An issue in Archer Platform before v.6.13 and fixed in 6.12.0.6 and 6.13.0 allows an authenticated malicious user to obtain sensitive information via a crafted URL.
Archerirm Archer
NA
CVE-2023-32760
An issue in Archer Platform before v.6.13 fixed in v.6.12.0.6 and v.6.13.0 allows an authenticated malicious user to obtain sensitive information via API calls related to data feeds and data publication.
Archerirm Archer
NA
CVE-2023-32761
Cross Site Request Forgery (CSRF) vulnerability in Archer Platform before v.6.13 and fixed in v.6.12.0.6 and v.6.13.0 allows an authenticated malicious user to execute arbitrary code via a crafted request.
Archerirm Archer
3.5
CVSSv2
CVE-2021-29252
RSA Archer prior to 6.9 SP1 P1 (6.9.1.1) contains a stored XSS vulnerability. A remote authenticated malicious Archer user with access to modify link name fields could potentially exploit this vulnerability to execute code in a victim's browser.
Rsa Archer
2.1
CVSSv2
CVE-2021-29253
The Tableau integration in RSA Archer 6.4 P1 (6.4.0.1) up to and including 6.9 P2 (6.9.0.2) is affected by an insecure credential storage vulnerability. An malicious attacker with access to the Tableau workbook file may obtain access to credential information to use it in further...
Rsa Archer
4
CVSSv2
CVE-2018-1219
EMC RSA Archer, versions before 6.2.0.8, contains an improper access control vulnerability on an API which is used to enumerate user information. A remote authenticated malicious user can potentially exploit this vulnerability to gather information about the user base and may use...
Emc Rsa Archer
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »