CVE-2023-45357
First published: Tue Oct 17 2023(Updated: )
Archer Platform 6.x before 6.13 P2 HF2 (6.13.0.2.2) contains a sensitive information disclosure vulnerability. An authenticated attacker could potentially obtain access to sensitive information via a popup warning message. 6.14 (6.14.0) is also a fixed release.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| RSA Archer | >=6.0<6.13.0.2.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Archer Platform issue?
The vulnerability ID for this Archer Platform issue is CVE-2023-45357.
What is the severity of CVE-2023-45357?
The severity of CVE-2023-45357 is medium with a CVSS score of 6.5.
What is the affected software version range for this vulnerability?
The affected software version range for this vulnerability is Archer Platform 6.x before 6.13 P2 HF2 (6.13.0.2.2).
How can an attacker exploit this vulnerability?
An attacker can exploit this vulnerability by being authenticated and obtaining access to sensitive information via a popup warning message.
How can I fix this vulnerability?
To fix this vulnerability, update Archer Platform to version 6.13 P2 HF2 (6.13.0.2.2) or upgrade to version 6.14 (6.14.0).
- collector/nvd-index
- agent/author
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/event
- agent/description
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- vendor/archerirm
- canonical/rsa archer
- version/rsa archer/6.0