Lucene search

PRIOn knowledge basePRION:CVE-2014-0639

HistoryMay 25, 2014 - 10:55 p.m.

Cross site scripting

2014-05-2522:55:00

PRIOn knowledge base

www.prio-n.com

6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

59.4%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Archer 5.x before GRC 5.4 SP1 P3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CPENameOperatorVersion
rsa_archer_egrceq5.2
rsa_archer_egrceq5.0
rsa_archer_egrceq5.3
rsa_archer_egrceq5.1
rsa_archer_egrceq5.4 sp1
rsa_archer_egrceq5.4

Name	Operator	Version
rsa_archer_egrc	eq	5.2
rsa_archer_egrc	eq	5.0
rsa_archer_egrc	eq	5.3
rsa_archer_egrc	eq	5.1
rsa_archer_egrc	eq	5.4 sp1
rsa_archer_egrc	eq	5.4

References

archives.neohapsis.com/archives/bugtraq/2014-05/0134.html

packetstormsecurity.com/files/126788/RSA-Archer-GRC-Cross-Site-Scripting.html

www.securityfocus.com/bid/67602

www.securitytracker.com/id/1030281

6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

59.4%

JSON

Related for PRION:CVE-2014-0639