CVE-2018-11060

Summary

RSA Archer, versions prior to 6.4.0.1, contain an authorization bypass vulnerability in the REST API. A remote authenticated malicious Archer user could potentially exploit this vulnerability to elevate their privileges.

Affected Software

VendorProductVersion RangeStatus
Dell EMCRSA Archernext of 6.4.0.1 < unspecifiedaffected

Weaknesses

  • REST API Authorization Bypass Vulnerability

ADP Enrichment

CVE Program Container

Additional References

References