2 matches found
CVE-2019-3715
RSA Archer before 6.5 SP1 is affected by an information disclosure vulnerability (CVE-2019-3715) caused by logging users’ session information in plaintext in RSA Archer log files. A local authenticated user with access to the logs can obtain the exposed information for further attacks. Remediatio...
EMC RSA Archer < 6.4.1.5 / 6.5.x < 6.5.0.2 Multiple Vulnerabilities
The version of EMC RSA Archer running on the remote web server is prior to 6.4.1.5 or 6.5.x 6.5.0.2. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists in RSA Archer versions, prior to 6.5 SP1 6.5.0.1. An authenticated malicious local user wi...