Important Update: Community URLs redirect issues are partially resolved. Learn More. .

cancel
Showing results for 
Search instead for 
Did you mean: 
Platform Announcements
Review announcements about Archer product releases

Articles

Announcing Archer Platform Release 2024.03

Summary Archer Release 2024.03 delivers enhancements for the Archer Platform. For a detailed list of features within this release, please see the Release Notes link below. Release Notes • Archer Announces Availability of Archer Release 2024.03 Downlo...

MegONeil by Archer Employee
  • 924 Views
  • 0 comments
  • 0 kudos

Archer Update for Multiple Vulnerabilities

Archer Identifier SA-11 CVE Identifier CVE-2024-26309, CVE-2024-26313 Severity High Severity Rating Individual CVE scores noted below. Affected Products Archer Platform versions greater than 6.x Summary Archer Platform contains fixes for multiple sec...

MegONeil by Archer Employee
  • 1891 Views
  • 0 comments
  • 0 kudos

Archer Release 6.13

Overview Archer Release 6.13 delivers enhancements for Archer use cases and the Archer Platform. For a detailed list of features within this release, please see the Advisory Announcement information below. Advisories Advisories announce a release and...

Anonymous by Not applicable
  • 10764 Views
  • 0 comments
  • 1 kudos

Announcing Archer Release 6.13 P3 HF1

Summary Archer Release 6.14 P3 HF1 includes fixes for the Archer Platform. Release Notes • Archer Announces Availability of Archer Release 6.13 P3 HF1 Download Archer Platform downloads are available on the myArcher Customer Portal. Please review Ins...

MegONeil by Archer Employee
  • 216 Views
  • 0 comments
  • 0 kudos

Announcing Archer Platform Release 6.14 P2 HF2

Summary Archer Release 6.14 P2 HF2 includes fixes for the Archer Platform. For additional details, see the Release Notes. Release Notes • Archer Announces Availability of Archer Release 6.14 P2 HF2 Note: As there are no new additions to the Known Iss...

MegONeil by Archer Employee
  • 615 Views
  • 0 comments
  • 0 kudos

Archer Update for Multiple Vulnerabilities

Archer Identifier SA-10 CVE Identifier CVE-2024-26310, CVE-2024-26311 Severity Medium Severity Rating Individual CVE scores noted below. Affected Products Archer Platform versions greater than 6.x Summary Archer Platform contains fixes for multiple s...

MegONeil by Archer Employee
  • 1431 Views
  • 0 comments
  • 0 kudos

Announcing Archer Platform Release 6.14 P2 HF1

Summary Archer Release 6.14 P2 HF1 includes fixes for the Archer Platform. For additional details, see the Release Notes. Release Notes • Archer Announces Availability of Archer Release 6.14 P2 HF1 Download Archer Platform downloads are available on ...

MegONeil by Archer Employee
  • 636 Views
  • 0 comments
  • 0 kudos

Archer Update for Multiple Vulnerabilities

Archer Identifier SA-9 CVE Identifier CVE-2023-48641, CVE-2023-48642 Severity High Severity Rating Individual CVE scores noted below. Affected Products Archer Platform versions greater than 6.x Summary Archer Platform contains fixes for multiple secu...

MegONeil by Archer Employee
  • 2622 Views
  • 0 comments
  • 1 kudos

Archer Update for Multiple Vulnerabilities

Archer Identifier SA-8 CVE Identifier CVE-2023-45357, CVE-2023-45358 Severity High Severity Rating Individual CVE scores noted below. Affected Products Archer Platform versions greater than 6.x Summary Archer Platform contains fixes for multiple secu...

MegONeil by Archer Employee
  • 2797 Views
  • 0 comments
  • 0 kudos

Archer Update for Multiple Vulnerabilities

Archer Identifier SA-7 CVE Identifier CVE-2023-32759, CVE-2023-32760, CVE-2023-32761, CVE-2023-37223, CVE-2023-37224 Severity High Severity Rating Individual CVE scores noted below. Affected Products Archer Platform versions greater than 6.0 Summary ...

MegONeil by Archer Employee
  • 6389 Views
  • 0 comments
  • 3 kudos

Archer Update for Stored Cross-site Scripting

Archer Identifier SA-6 CVE Identifier CVE-2023-30639 Severity High Severity Rating CVSSv3.1 Base Score: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N Affected Products Archer Platform versions greater than 6.8 Summary Archer Platform versions greater than 6.8 ...

MegONeil by Archer Employee
  • 3403 Views
  • 0 comments
  • 1 kudos

Archer Update for Multiple Vulnerabilities

Archer Identifier SA-5 CVE Identifier CVE-2022-37317, CVE-2022-37318 Severity High Severity Rating See below for scores of individual CVEs Affected Products Archer Platform versions greater than 6.x Summary Archer Platform contains fixes for multiple...

MegONeil by Archer Employee
  • 5448 Views
  • 0 comments
  • 2 kudos

Archer Update for Improper Access Control

Archer Identifier SA-3 CVE Identifier CVE-2022-37316 Severity Medium Severity Rating CVSSv3.1 Base Score: 6.5 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N) Affected Products Archer Platform versions greater than 6.8 Summary Archer Platform versions great tha...

MegONeil by Archer Employee
  • 3152 Views
  • 0 comments
  • 0 kudos

Archer Update for Multiple Vulnerabilities

Archer Identifier SA-2 CVE Identifier CVE-2022-30584, CVE-2022-30585, CVE-2021-33615 Severity Critical Severity Rating See below for scores of individual CVEs Affected Products Archer Platform versions greater than 6.x Summary Archer Platform contain...

MegONeil by Archer Employee
  • 8368 Views
  • 0 comments
  • 1 kudos
Summary Archer Release 2024.03 delivers enhancements for the Archer Platform. For a detailed list of features within this release, please see the Release Notes link below.   Release Notes • Archer Announces Availability of Archer Release 2024.03   Download Archer Platform downloads are available on the myArcher Customer Portal. Please review Instructions to access Archer Platform Downloads through the myArcher Customer Portal to learn how to register and access the download. This release is available to Archer on-premises customers on April 11, 2024.   Documentation • Archer 2024.03 Platform Help • Archer 2024.03 Control Panel Help • Presentation - Archer Release 2024.03 Overview • Archer Qualified and Supported Environments • Archer 2024.03 & Later Known Issues (PDF format) • Archer 2024.03 & Later Known Issues (Excel format)   Blogs • Archer Platform and Engage Downloads moving to myArcher • Update on Archer Security Advisories • Altered Behavior for File:// External Links • Changes to Archer Platform Releases   Free Friday Tech Huddles Free Friday Tech Huddles provide free training that is offered by the Product Management and Support teams. Stay tuned for FFTH updates. Register here to attend.   End of Product Support Policy Archer has a defined End of Primary Support policy associated with all major versions. For additional details, refer to the Product Version Life Cycle.
View full article
Summary Archer announces End of Product Support (EOPS) for Archer Release 6.11, as well as all derivative patches, effective March 31, 2024. Extended Support will be offered for this version, please contact your Account team for details. Customers under current maintenance contracts can update to an Archer 6.14 version as the latest Platform release.   Platforms • Archer Release 6.11 • Archer Release 6.11 Patch 1 • Archer Release 6.11 Patch 2 and all Patch 2 Hot Fix releases • Archer Release 6.11 Patch 3 • Archer Release 6.11 Patch 4   Recommendations Customers who have deployed Archer Release 6.11.x are encouraged to update to Archer Release 6.14 or later.   Documentation For additional documentation and more, visit the Archer Help Center and the Archer Community.   End of Product Support Policy Archer has a defined End of Primary Support policy associated with all major versions. For additional details, refer to the Product Version Life Cycle.
View full article
  Archer Identifier SA-11   CVE Identifier CVE-2024-26309, CVE-2024-26313   Severity High   Severity Rating Individual CVE scores noted below.   Affected Products Archer Platform versions greater than 6.x   Summary Archer Platform contains fixes for multiple security vulnerabilities that could potentially be exploited by malicious users to compromise the affected system.   Details Archer Platform has been updated for the following vulnerabilities: • Sensitive Information Disclosure Vulnerability CVE-2024-26309 Archer Platform 6.x before version 6.14 P2 HF2 (6.14.0.2.2) contains a sensitive information disclosure vulnerability. An unauthenticated attacker could potentially obtain access to sensitive information via an internal URL. CVSSv3.1 Base Score: 5.3 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N) • Stored Cross-site Scripting Vulnerability CVE-2024-26313 Archer Platform 6.x before 6.14 P2 HF2 (6.14.0.2.2) contains a stored cross-site scripting (XSS) vulnerability. A remote authenticated malicious Archer user could potentially exploit this vulnerability to store malicious HTML or JavaScript code in a trusted application data store. When victim users access the data store through their browsers, the malicious code gets executed by the web browser in the context of the vulnerable application. 6.13.P3 HF1 (6.13.0.3.1) is also a fixed release. CVSSv 3.1 Score 7.3 (CVSS:3.1 /AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N) For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm. To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.   Recommendation For CVE-2024-26309, the following Archer releases contain a resolution to this vulnerability: • Archer version 6.14 P2 HF2 (6.14.0.2.2) or higher For CVE-2024-26313, the following Archer releases contain a resolution to this vulnerability: • Archer version 6.14 P2 HF2 (6.14.0.2.2) or higher • Archer version 6.13.P3 HF1 (6.13.0.3.1) or higher Archer recommends all customers upgrade at the earliest opportunity.   Credit Archer would like to credit security researcher Simone Cristofaro with the discovery of CVE-2024-26313.   Severity Rating For an explanation of Severity Ratings, refer to the Archer Vulnerability Disclosure Policy. Archer recommends all customers consider both the base score and any relevant temporal and environmental scores which may impact the potential severity associated with particular security vulnerability.   EOPS Policy Archer has a defined End of Primary Support policy associated with all major versions. Please refer to the Product Version Life Cycle for additional details.   Legal Information Read and use the information in this Archer Security Advisory to assist in avoiding any situation that might arise from the problems described herein. If you have any questions regarding this advisory, contact Archer Technical Support. Archer distributes Archer Security Advisories in order to bring to the attention of users of the affected Archer products, important security information. Archer recommends that all users determine the applicability of this information to their individual situations and take appropriate action. The information set forth herein is provided "as is" without warranty of any kind. Archer disclaims all warranties, either express or implied, including the warranties of merchantability, fitness for a particular purpose, title and non-infringement. In no event shall Archer, its affiliates or its suppliers, be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Archer, its affiliates or its suppliers have been advised of the possibility of such damages. Some jurisdictions do not allow the exclusion or limitation of liability for consequential or incidental damages, so the foregoing limitation may not apply.
View full article
Overview Archer Release 6.13 delivers enhancements for Archer use cases and the Archer Platform. For a detailed list of features within this release, please see the Advisory Announcement information below.   Advisories Advisories announce a release and provide insight into the enhancements that are available within the release.  Archer Announces Availability of Archer Release 6.13  Archer Announces Availability of Archer Release 6.13 Patch 1 Archer Announces Availability of Archer Release 6.13 Patch 1 Hotfix 2 Archer Announces Availability of Archer Release 6.13 Patch 1 Hotfix 3 Archer Announces Availability of Archer Release 6.13 Patch 2 Announcing Archer Platform Release 6.13 Patch 2 Hotfix 2 Announcing Archer Platform Release 6.13 Patch 3 Announcing Archer Platform Release 6.13 Patch 3 Hotfix 1   Use Case Updates The following provides links for the updated Use Case Packages that are available on the Archer Community and include:  Archer Third Party Governance Archer Third Party Risk Management Archer Third Party Engagements Archer Issues Management Archer Audit Engagements and Workpapers Archer Audit Quality and Planning Archer Crisis Management Archer Business Continuity & IT Disaster Recovery Planning Archer Incident Management Archer Business Impact Analysis Archer Operational Scenario Analysis Archer ESG Management Archer PCI Management Archer IT Controls Assurance Archer IT & Security Policy Program Management Archer Policy Program Management Archer Control Assurance Program Management Archer Financial Controls Monitoring Archer Enterprise Catalog Archer Task Management   Blogs Blogs share the latest news about a specific release or feature. 6.13 Archer Installer Update – Default Icon Replacement Upcoming Plans for Calculating Inactive Fields Next Gen Risk Experience: Modern and Responsive Global Navigation Introducing the Next Generation Dashboard Archer Platform and Engage Downloads moving to MyArcher Update on Archer Security Advisories   Documentation Use Case Help Documentation for the updated use cases can be found here: IT Security & Risk Management: PC Management 6.11 Audit Management: Audit Engagements and Workpapers 6.13 Business Resiliency: Business Impact Analysis 6.13 ESG Management IT Security & Risk Management: PCI Management 6.13 RCCM: Controls Assurance Program Management 6.13 Third Party Governance: Third Party Engagement 6.13 Third Party Governance: Third Party Risk Management 6.13 The latest Platform documentation can be found in the following locations:  Presentation - Archer Release 6.13 Overview  Archer 6.13 Release Notes (Excel Format)  Archer 6.13 Release Notes (PDF Format)  Archer Qualified and Supported Environments   Archer 6.13 Platform Help  Archer 6.13 Control Panel Help  Archer 6.13 & Later Release Notes - Patch 1 (Excel Format) Archer 6.13 & Later Release Notes - Patch 1 (PDF Format) Archer 6.13 & Later Release Notes - Patch Hotfix 2 (Excel Format) Archer 6.13 & Later Release Notes - Patch 1 Hotfix 2 (PDF Format) Archer 6.13 & Later Release Notes - Patch 1 Hotfix 3 (PDF Format) Archer 6.13 & Later Release Notes - Patch 1 Hotfix 3 (Excel Format) Archer 6.13 & Later Release Notes - Patch 2 (PDF Format) Archer 6.13 & Later Release Notes - Patch 2 (Excel Format) Archer 6.13 & Later Release Notes - Patch 2 Hotfix 2 (PDF Format) Archer 6.13 & Later Release Notes - Patch 2 Hotfix 2 (Excel Format) Archer 6.13 & Later Release Notes - Patch 3 (PDF Format) Archer 6.13 & Later Release Notes - Patch 3 (Excel Format) Archer 6.13 & Later Release Notes - Patch 3 Hotfix 1 (PDF Format) Archer 6.13 & Later Release Notes - Patch 3 Hotfix 1 (Excel Format)   Free Friday Tech Huddle Schedule and Replays Replay -- FFTH Archer Release 6.13 Release Overview Platform Updates - Next Gen Dashboards and Global Navigation Replay -- FFTH Archer Platform Release 6.13 Overview & Demo - Solutions & Use Case Updates Replay -- FFTH: Findings Message Updates in Release 6.13 Patch 1   End of Product Support Policy Archer has a defined End of Primary Support policy associated with all major versions. For additional details, refer to the Product Version Life Cycle.  
View full article
Summary Archer Release 6.14 P3 HF1 includes fixes for the Archer Platform.   Release Notes • Archer Announces Availability of Archer Release 6.13 P3 HF1   Download Archer Platform downloads are available on the myArcher Customer Portal. Please review Instructions to access Archer Platform Downloads through the myArcher Customer Portal to learn how to register and access the download.   Documentation For all 6.13 related documentation please go to the following page: • Archer Release 6.13 Overview   End of Product Support Policy Archer has a defined End of Primary Support policy associated with all major versions. For additional details, refer to the Product Version Life Cycle.
View full article
Top Contributors