Rsa Archer Egrc@5.2 Security Vulnerabilities and Issues — Rsa Archer Egrc@5.2 CVE List

Lucene search

EmcRsa Archer Egrc5.2

12 matches found

CVE•added 2013/02/06 12:5 p.m.•41 views

CVE-2012-2294

EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 allow remote attackers to conduct clickjacking attacks via a crafted web page.

6.8CVSS6.8AI score0.00396EPSS

CVE•added 2013/05/07 12:23 p.m.•41 views

CVE-2013-0934

EMC RSA Archer 5.x before GRC 5.3SP1, and Archer Smart Suite Framework 4.x, allows remote authenticated users to bypass intended access restrictions and modify global reports via unspecified vectors.

4CVSS6.4AI score0.00183EPSS

CVE•added 2013/12/19 10:55 p.m.•41 views

CVE-2013-6178

Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Archer GRC 5.x before 5.4 SP1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00225EPSS

CVE•added 2013/02/06 12:5 p.m.•40 views

CVE-2012-1064

Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.9AI score0.00225EPSS

CVE•added 2013/02/06 12:5 p.m.•36 views

CVE-2012-2292

The Silverlight cross-domain policy in EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 does not restrict access to the Archer application, which allows remote attackers to bypass the Same Origin Policy via unspecified vectors.

7.5CVSS6.9AI score0.00225EPSS

CVE•added 2013/02/06 12:5 p.m.•35 views

CVE-2012-2293

Directory traversal vulnerability in EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 allows remote authenticated users to upload files, and consequently execute arbitrary code, via a relative path.

6.5CVSS7.1AI score0.01321EPSS

CVE•added 2013/09/05 11:44 a.m.•34 views

CVE-2013-3276

EMC RSA Archer GRC 5.x before 5.4 allows remote authenticated users to bypass intended access restrictions and complete a login by leveraging a deactivated account.

6CVSS6.5AI score0.00191EPSS

CVE•added 2013/05/07 12:23 p.m.•32 views

CVE-2013-0933

Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Archer 5.x before GRC 5.3SP1, and Archer Smart Suite Framework 4.x, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.9AI score0.00225EPSS

CVE•added 2013/05/07 12:23 p.m.•30 views

CVE-2013-0932

EMC RSA Archer 5.x before GRC 5.3SP1, and Archer Smart Suite Framework 4.x, allows remote authenticated users to bypass intended access restrictions and upload arbitrary files via unspecified vectors.

4CVSS6.5AI score0.00183EPSS

CVE•added 2014/05/25 10:55 p.m.•30 views

CVE-2014-0639

Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Archer 5.x before GRC 5.4 SP1 P3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00285EPSS

CVE•added 2014/12/12 6:59 p.m.•28 views

CVE-2014-4633

Cross-site scripting (XSS) vulnerability in EMC RSA Archer GRC Platform 5.x before 5.5.1.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00225EPSS

CVE•added 2013/09/05 11:44 a.m.•27 views

CVE-2013-3277

Open redirect vulnerability in EMC RSA Archer GRC 5.x before 5.4 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

5.8CVSS6.9AI score0.00224EPSS