CVE-2021-33615: Malicious File Upload
First published: Thu Jun 02 2022(Updated: )
RSA Archer 6.8.00500.1003 P5 allows Unrestricted Upload of a File with a Dangerous Type.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| RSA Archer | >=6.0.0<6.9.3.4 | |
| RSA Archer | >=6.10.0.0<6.10.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2021-33615?
The severity of CVE-2021-33615 is high with a CVSS score of 7.5.
How does CVE-2021-33615 impact RSA Archer?
CVE-2021-33615 allows unrestricted upload of a file with a dangerous type in RSA Archer 6.8.00500.1003 P5.
Which versions of RSA Archer are impacted by CVE-2021-33615?
RSA Archer versions 6.0.0 to 6.9.3.4 and versions 6.10.0.0 to 6.10.0.2 are impacted by CVE-2021-33615.
How can I fix the vulnerability in RSA Archer?
To fix the vulnerability in RSA Archer, update to a version outside the impacted range (6.9.3.4 and above for versions 6.0.0 to 6.9.3.4, and 6.10.0.3 and above for versions 6.10.0.0 to 6.10.0.2).
What is the Common Weakness Enumeration (CWE) ID for CVE-2021-33615?
The Common Weakness Enumeration (CWE) ID for CVE-2021-33615 is CWE-434.
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/event
- agent/description
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/rsa
- canonical/rsa archer
- version/rsa archer/6.0.0
- version/rsa archer/6.10.0.0