CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-1219

EMC RSA Archer, versions prior to 6.2.0.8, contains an improper access control vulnerability on an API which is used to enumerate user information. A remote authenticated malicious user can potentially exploit this vulnerability to gather information about the user base and may use this information in subsequent attacks.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 42.7%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 4.0

References

http://seclists.org/fulldisclosure/2018/Mar/12
http://www.securityfocus.com/bid/103319
http://www.securitytracker.com/id/1040457
http://seclists.org/fulldisclosure/2018/Mar/12
http://www.securityfocus.com/bid/103319
http://www.securitytracker.com/id/1040457

Products affected by CVE-2018-1219

Emc » Rsa Archer » Version: Any

cpe:2.3:a:emc:rsa_archer:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-1219

Products

Pricing

Contact Us