Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2021-41594

In RSA Archer 6.9.SP1 P3, if some application functions are precluded by the Administrator, this can be bypassed by intercepting the API request at the /api/V2/internal/TaskPermissions/CheckTaskAccess endpoint. If the parameters of this request are replaced with empty fields, the attacker achieves access to the precluded functions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 48.0%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
Products affected by CVE-2021-41594
  • Rsa » Archer » Version: 6.1.0.0
    cpe:2.3:a:rsa:archer:6.1.0.0
  • Rsa » Archer » Version: 6.1.0.3
    cpe:2.3:a:rsa:archer:6.1.0.3
  • Rsa » Archer » Version: 6.2
    cpe:2.3:a:rsa:archer:6.2
  • Rsa » Archer » Version: 6.3
    cpe:2.3:a:rsa:archer:6.3
  • Rsa » Archer » Version: 6.4
    cpe:2.3:a:rsa:archer:6.4
  • Rsa » Archer » Version: 6.4.0.1
    cpe:2.3:a:rsa:archer:6.4.0.1
  • Rsa » Archer » Version: 6.4.0.2
    cpe:2.3:a:rsa:archer:6.4.0.2
  • Rsa » Archer » Version: 6.5
    cpe:2.3:a:rsa:archer:6.5
  • Rsa » Archer » Version: 6.6.0.2
    cpe:2.3:a:rsa:archer:6.6.0.2
  • Rsa » Archer » Version: 6.6.0.3
    cpe:2.3:a:rsa:archer:6.6.0.3
  • Rsa » Archer » Version: 6.6.0.8
    cpe:2.3:a:rsa:archer:6.6.0.8
  • Rsa » Archer » Version: 6.7
    cpe:2.3:a:rsa:archer:6.7
  • Rsa » Archer » Version: 6.7.0.1
    cpe:2.3:a:rsa:archer:6.7.0.1
  • Rsa » Archer » Version: 6.7.0.2
    cpe:2.3:a:rsa:archer:6.7.0.2
  • Rsa » Archer » Version: 6.7.0.3
    cpe:2.3:a:rsa:archer:6.7.0.3
  • Rsa » Archer » Version: 6.7.0.8
    cpe:2.3:a:rsa:archer:6.7.0.8
  • Rsa » Archer » Version: 6.8
    cpe:2.3:a:rsa:archer:6.8
  • Rsa » Archer » Version: 6.8.0.2
    cpe:2.3:a:rsa:archer:6.8.0.2
  • Rsa » Archer » Version: 6.8.0.3
    cpe:2.3:a:rsa:archer:6.8.0.3
  • Rsa » Archer » Version: 6.8.0.4
    cpe:2.3:a:rsa:archer:6.8.0.4
  • Rsa » Archer » Version: 6.8.0.5
    cpe:2.3:a:rsa:archer:6.8.0.5
  • Rsa » Archer » Version: 6.9
    cpe:2.3:a:rsa:archer:6.9
  • Rsa » Archer » Version: 6.9.0.1
    cpe:2.3:a:rsa:archer:6.9.0.1
  • Rsa » Archer » Version: 6.9.0.2
    cpe:2.3:a:rsa:archer:6.9.0.2
  • Rsa » Archer » Version: 6.9.0.3
    cpe:2.3:a:rsa:archer:6.9.0.3
  • Rsa » Archer » Version: 6.9.1.0
    cpe:2.3:a:rsa:archer:6.9.1.0
  • Rsa » Archer » Version: 6.9.1.1
    cpe:2.3:a:rsa:archer:6.9.1.1
  • Rsa » Archer » Version: 6.9.1.4
    cpe:2.3:a:rsa:archer:6.9.1.4
  • Rsa » Archer » Version: 6.9.2.1
    cpe:2.3:a:rsa:archer:6.9.2.1
  • Rsa » Archer » Version: 6.9.2.2
    cpe:2.3:a:rsa:archer:6.9.2.2
  • Rsa » Archer » Version: 6.9.3.0
    cpe:2.3:a:rsa:archer:6.9.3.0
  • Rsa » Archer » Version: 6.9.3.0.1
    cpe:2.3:a:rsa:archer:6.9.3.0.1
  • Rsa » Archer » Version: 6.9.3.1
    cpe:2.3:a:rsa:archer:6.9.3.1
  • Rsa » Archer » Version: 6.9.3.2
    cpe:2.3:a:rsa:archer:6.9.3.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved