Important Update: Community URLs redirect issues are partially resolved. Learn More. .
on 2015-07-27 08:24 AM - edited on 2024-02-02 08:06 PM by MegONeil
EMC Identifier: ESA-2015-094
CVE Identifier: CVE-2015-0542
Severity Rating: CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:P/A:N)
Affected Products:
Summary:
RSA Archer GRC contains fixes for multiple Cross-Site Request Forgery vulnerabilities that could potentially be exploited by malicious users to compromise the affected system.
Details:
RSA Archer GRC platform contains fixes for multiple Cross-Site Request Forgery vulnerabilities that could potentially be exploited by malicious users to perform unauthorized actions on behalf of authenticated users of the application.
Recommendation:
The following RSA Archer GRC release contains resolutions to these vulnerabilities:
RSA recommends all customers upgrade at their earliest opportunity.