Dell Rsa Archer

12 CVEs affecting Dell Rsa Archer. Latest disclosed: 2020-05-04. Critical: 1, High: 5.

Top CVEs affecting Dell Rsa Archer
CVESeverityScorePublishedSummary
CVE-2019-3758Critical9.82019-09-18RSA Archer, versions prior to 6.6 P2 (6.6.0.2), contain an improper authentication vulnerability. The vulnerability allows sysadmins to create user accounts wi…
CVE-2020-5331High8.82020-05-04RSA Archer, versions prior to 6.7 P3 (6.7.0.3), contain an information exposure vulnerability. Users’ session information could potentially be stored in cache…
CVE-2020-5334High8.22020-05-04RSA Archer, versions prior to 6.7 P2 (6.7.0.2), contains a Document Object Model (DOM) based cross-site scripting vulnerability. A remote unauthenticated attac…
CVE-2019-3716High7.82019-03-13RSA Archer versions, prior to 6.5 SP2, contain an information exposure vulnerability. The database connection password may get logged in plain text in the RSA…
CVE-2019-3715High7.82019-03-13RSA Archer versions, prior to 6.5 SP1, contain an information exposure vulnerability. Users' session information is logged in plain text in the RSA Archer log…
CVE-2020-5332High7.22020-05-04RSA Archer, versions prior to 6.7 P3 (6.7.0.3), contain a command injection vulnerability. AN authenticated malicious user with administrator privileges could…
CVE-2019-3756Medium6.52019-09-18RSA Archer, versions prior to 6.6 P3 (6.6.0.3), contain an information disclosure vulnerability. Information relating to the backend database gets disclosed to…
CVE-2020-5335Medium5.02020-05-04RSA Archer, versions prior to 6.7 P2 (6.7.0.2), contain a cross-site request forgery vulnerability. A remote unauthenticated attacker could potentially exploit…
CVE-2020-5337Medium4.62020-05-04RSA Archer, versions prior to 6.7 P1 (6.7.0.1), contain a URL redirection vulnerability. A remote unauthenticated attacker could potentially exploit this vulne…
CVE-2020-5336Medium4.62020-05-04RSA Archer, versions prior to 6.7 P1 (6.7.0.1), contain a URL injection vulnerability. An unauthenticated attacker could potentially exploit this vulnerability…
CVE-2020-5333Medium4.32020-05-04RSA Archer, versions prior to 6.7 P3 (6.7.0.3), contain an authorization bypass vulnerability in the REST API. A remote authenticated malicious Archer user cou…
CVE-2018-15780Medium4.32019-01-03RSA Archer versions prior to 6.5.0.1 contain an improper access control vulnerability. A remote malicious user could potentially exploit this vulnerability to…