Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
archer vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2022-30585
The REST API in Archer Platform 6.x prior to 6.11 (6.11.0.0) contains an Authorization Bypass Vulnerability. A remote authenticated malicious user could potentially exploit this vulnerability to view sensitive information. 6.10 P3 (6.10.0.3) and 6.9 SP3 P4 (6.9.3.4) are also fixe...
Rsa Archer
5.4
CVSSv3
CVE-2020-29537
Archer prior to 6.8 P2 (6.8.0.2) is affected by an open redirect vulnerability. A remote privileged attacker may potentially redirect legitimate users to arbitrary web sites and conduct phishing attacks. The attacker could then steal the victims' credentials and silently aut...
Rsa Archer
4.9
CVSSv3
CVE-2020-29538
Archer prior to 6.9 P1 (6.9.0.1) contains an improper access control vulnerability in an API. A remote authenticated malicious administrative user can potentially exploit this vulnerability to gather information about the system, and may use this information in subsequent attacks...
Rsa Archer
5.4
CVSSv3
CVE-2023-37223
Cross Site Scripting (XSS) vulnerability in Archer Platform before v.6.13 and fixed in v.6.12.0.6 and v.6.13.0 allows a remote authenticated malicious user to execute arbitrary code via a crafted malicious script.
Archerirm Archer
5.5
CVSSv3
CVE-2023-37224
An issue in Archer Platform before v.6.13 fixed in v.6.12.0.6 and v.6.13.0 allows an authenticated malicious user to obtain sensitive information via the log files.
Archerirm Archer
9.8
CVSSv3
CVE-2019-3758
RSA Archer, versions before 6.6 P2 (6.6.0.2), contain an improper authentication vulnerability. The vulnerability allows sysadmins to create user accounts with insufficient credentials. Unauthenticated attackers could gain unauthorized access to the system using those accounts.
Rsa Archer
5.4
CVSSv3
CVE-2023-45358
Archer Platform 6.x prior to 6.13 P2 HF2 (6.13.0.2.2) contains a stored cross-site scripting (XSS) vulnerability. A remote authenticated malicious Archer user could potentially exploit this vulnerability to store malicious HTML or JavaScript code in a trusted application data sto...
Archerirm Archer
6.5
CVSSv3
CVE-2023-32760
An issue in Archer Platform before v.6.13 fixed in v.6.12.0.6 and v.6.13.0 allows an authenticated malicious user to obtain sensitive information via API calls related to data feeds and data publication.
Archerirm Archer
5.5
CVSSv3
CVE-2020-5331
RSA Archer, versions before 6.7 P3 (6.7.0.3), contain an information exposure vulnerability. Users’ session information could potentially be stored in cache or log files. An authenticated malicious local user with access to the log files may obtain the exposed information t...
Rsa Archer
7.2
CVSSv3
CVE-2020-5332
RSA Archer, versions before 6.7 P3 (6.7.0.3), contain a command injection vulnerability. AN authenticated malicious user with administrator privileges could potentially exploit this vulnerability to execute arbitrary commands on the system where the vulnerable application is depl...
Rsa Archer
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »