CVE-2022-26948
First published: Tue Mar 29 2022(Updated: )
The Archer RSS feed integration for Archer 6.x through 6.9 SP1 (6.9.1.0) is affected by an insecure credential storage vulnerability. A malicious attacker may obtain access to credential information to use it in further attacks.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| RSA Archer | >=6.1.0.0<6.9.1.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this security vulnerability?
The vulnerability ID for this security vulnerability is CVE-2022-26948.
What is the severity of CVE-2022-26948?
CVE-2022-26948 has a severity rating of 7.5 (high).
Which version of RSA Archer is affected by CVE-2022-26948?
RSA Archer versions between 6.x and 6.9 SP1 (6.9.1.0) are affected by CVE-2022-26948.
What is the impact of CVE-2022-26948?
CVE-2022-26948 allows a malicious attacker to obtain access to credential information, which can be used in further attacks.
Are there any resources for additional information about this vulnerability?
Yes, you can find additional information about CVE-2022-26948 at the following links: [Reference 1](https://www.archerirm.community/t5/general-support-information/tkb-p/information-support) and [Reference 2](https://www.archerirm.community/t5/security-advisories/archer-an-rsa-business-update-for-multiple-vulnerabilities/ta-p/674497).
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/rsa
- canonical/rsa archer
- version/rsa archer/6.1.0.0