Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:rsa_archer_version_5.4.1.3,_5.5.3.1,_5.5.2.3,_5.5.2,_5.5.1.3.1,_5.5.1.1:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductRsa Archer Version 5.4.1.3, 5.5.3.1, 5.5.2.3, 5.5.2, 5.5.1.3.1, 5.5.1.1 (0448ec81-fc22-514f-8b92-5a1426107e2c)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2017-5002 vulnerable 2026-06-08 05:09:38.979672 Details available
EMC RSA Archer 5.4.1.3, 5.5.3.1, 5.5.2.3, 5.5.2, 5.5.1.3.1, 5.5.1.1 is affected by an open redirect vulnerability. A remote unprivileged attacker may potentially redirect legitimate users to arbitrary web sites and conduct phishing attacks. The attacker could then steal the victims' credentials and silently authenticate them to the RSA Archer application without the victims realizing an attack occurred.
Published: 2017-07-07T00:00:00.000Z
Updated: 2024-08-05T14:47:43.841Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2017-5001 vulnerable 2026-06-08 05:09:38.979128 Details available
EMC RSA Archer 5.4.1.3, 5.5.3.1, 5.5.2.3, 5.5.2, 5.5.1.3.1, 5.5.1.1 is affected by an information exposure through an error message vulnerability. A remote low privileged attacker may potentially exploit this vulnerability to use information disclosed in an error message to launch another more focused attack.
Published: 2017-07-07T00:00:00.000Z
Updated: 2024-08-05T14:47:44.162Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2017-5000 vulnerable 2026-06-08 05:09:38.978559 Details available
EMC RSA Archer 5.4.1.3, 5.5.3.1, 5.5.2.3, 5.5.2, 5.5.1.3.1, 5.5.1.1 is affected by an information exposure through an error message vulnerability. A remote low privileged attacker may potentially exploit this vulnerability to use information disclosed in an error message to launch another more focused attack.
Published: 2017-07-07T00:00:00.000Z
Updated: 2024-08-05T14:47:43.711Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2017-4999 vulnerable 2026-06-08 05:09:38.977791 Details available
EMC RSA Archer 5.4.1.3, 5.5.3.1, 5.5.2.3, 5.5.2, 5.5.1.3.1, 5.5.1.1 is affected by an authorization bypass through user-controlled key vulnerability in Discussion Forum Messages. A remote low privileged attacker may potentially exploit this vulnerability to elevate their privileges and view other users' discussion forum messages.
Published: 2017-07-07T00:00:00.000Z
Updated: 2024-08-05T14:47:44.127Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2017-4998 vulnerable 2026-06-08 05:09:38.973656 Details available
EMC RSA Archer 5.4.1.3, 5.5.3.1, 5.5.2.3, 5.5.2, 5.5.1.3.1, 5.5.1.1 is potentially affected by a cross-site request forgery vulnerability. A remote low privileged attacker may potentially exploit the vulnerability to execute unauthorized requests on behalf of the victim, using the authenticated user's privileges.
Published: 2017-07-07T00:00:00.000Z
Updated: 2024-08-05T14:47:43.769Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.