Archer Security Vulnerabilities and Issues — Archer CVE List

Lucene search

RsaArcher

3 matches found

CVE•added 2022/03/30 12:15 a.m.•66 views

CVE-2022-26948

The Archer RSS feed integration for Archer 6.x through 6.9 SP1 (6.9.1.0) is affected by an insecure credential storage vulnerability. A malicious attacker may obtain access to credential information to use it in further attacks.

7.5CVSS7.3AI score0.00256EPSS

CVE•added 2022/08/25 11:15 p.m.•62 views

CVE-2022-37317

Archer Platform 6.x before 6.11 P3 contain an HTML injection vulnerability. An authenticated remote attacker could potentially exploit this vulnerability by tricking a victim application user to execute malicious code in the context of the web application. 6.10 P4 (6.10.0.4) and 6.11 P2 HF4 (6.11.0...

7.6CVSS5.7AI score0.00126EPSS

CVE•added 2022/08/25 11:15 p.m.•50 views

CVE-2022-37318

Archer Platform 6.9 SP2 P2 before 6.11 P3 (6.11.0.3) contain a reflected XSS vulnerability. A remote unauthenticated malicious Archer user could potentially exploit this vulnerability by tricking a victim application user into supplying malicious JavaScript code to the vulnerable web application. T...

7CVSS6.1AI score0.00215EPSS