Important Update: Community URLs redirect issues are partially resolved. Learn More. .

This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
No ratings

[Historic] Archer Update for GRC Multiple Cross-Site Request Forgery Vulnerabilities

Anonymous
Not applicable

on ‎2015-07-27 08:24 AM - edited on ‎2024-02-02 08:06 PM by Archer Employee

 

EMC Identifier: ESA-2015-094

CVE Identifier: CVE-2015-0542

Severity Rating: CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:P/A:N)

 

Affected Products:

  •  RSA Archer GRC 5.5 SP1

 

Summary: 

RSA Archer GRC contains fixes for multiple Cross-Site Request Forgery vulnerabilities that could potentially be exploited by malicious users to compromise the affected system.

 

Details: 

RSA Archer GRC platform contains fixes for multiple Cross-Site Request Forgery vulnerabilities that could potentially be exploited by malicious users to perform unauthorized actions on behalf of authenticated users of the application.

 

Recommendation:

 The following RSA Archer GRC release contains resolutions to these vulnerabilities:

  •  RSA Archer GRC 5.5 SP1 P3

 RSA recommends all customers upgrade at their earliest opportunity.

Was this article helpful? Yes No
0 Kudos
Version history
Last update:
‎2024-02-02 08:06 PM
Updated by:
Archer Employee
Contributors