Vulnerability Details CVE-2015-4542
EMC RSA Archer GRC 5.x before 5.5.3 allows remote authenticated users to bypass intended access restrictions, and read or modify Discussion Forum Fields messages, via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.9%
CVSS Severity
CVSS v2 Score 6.5
References
- http://packetstormsecurity.com/files/133682/RSA-Archer-GRC-5.5.3-XSS-Improper-Authorization-Information-Disclosure.html
- http://seclists.org/bugtraq/2015/Sep/105
- http://www.securitytracker.com/id/1033649
- http://packetstormsecurity.com/files/133682/RSA-Archer-GRC-5.5.3-XSS-Improper-Authorization-Information-Disclosure.html
- http://seclists.org/bugtraq/2015/Sep/105
- http://www.securitytracker.com/id/1033649
Products affected by CVE-2015-4542
-
cpe:2.3:a:emc:rsa_archer_grc:5.5.0
-
cpe:2.3:a:emc:rsa_archer_grc:5.5.1
-
cpe:2.3:a:emc:rsa_archer_grc:5.5.2