First published: Mon May 04 2020(Updated: )
RSA Archer, versions prior to 6.7 P3 (6.7.0.3), contain an authorization bypass vulnerability in the REST API. A remote authenticated malicious Archer user could potentially exploit this vulnerability to view unauthorized information.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
RSA Archer | <6.7.0.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-5333 is an authorization bypass vulnerability in RSA Archer versions prior to 6.7 P3 (6.7.0.3) that allows a remote authenticated malicious Archer user to view unauthorized information.
RSA Archer versions prior to 6.7 P3 (6.7.0.3) are affected by CVE-2020-5333.
CVE-2020-5333 has a severity rating of 4.3 (medium severity).
A remote authenticated malicious Archer user could potentially exploit the authorization bypass vulnerability in RSA Archer to view unauthorized information.
Yes, a security update is available for RSA Archer to address CVE-2020-5333.