Back to search
CVE-2018-1219
Published: Mar 8, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
EMC RSA Archer, versions prior to 6.2.0.8, contains an improper access control vulnerability on an API which is used to enumerate user information. A remote authenticated malicious user can potentially exploit this vulnerability to gather information about the user base and may use this information in subsequent attacks.
| Vendor | Product | Versions |
|---|---|---|
n/a | EMC RSA Archer GRC Platform RSA Archer versions prior to 6.2.0.8 | affected EMC RSA Archer GRC Platform RSA Archer versions prior to 6.2.0.8 |
References
http://seclists.org/fulldisclosure/2018/Mar/12
x_refsource_CONFIRM
103319
vdb-entry
x_refsource_BID
1040457
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now