CVE-2017-14372
N/A
N/A
Summary
RSA Archer GRC Platform prior to 6.2.0.5 is affected by reflected cross-site scripting vulnerabilities via certain RSA Archer Help pages. Attackers could potentially exploit this to execute arbitrary HTML in the user's browser session in the context of the affected RSA Archer application.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | RSA Archer GRC Platform prior to 6.2.0.5 | RSA Archer GRC Platform prior to 6.2.0.5 | affected |
Weaknesses
- Reflected Cross Site Scripting
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/101195
- http://www.securitytracker.com/id/1039518
- http://seclists.org/fulldisclosure/2017/Oct/12
References
- http://www.securityfocus.com/bid/101195
- http://www.securitytracker.com/id/1039518
- http://seclists.org/fulldisclosure/2017/Oct/12
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.