Unrated severityNVD Advisory· Published Sep 26, 2015· Updated May 6, 2026

CVE-2015-4543

Description

EMC RSA Archer GRC 5.x before 5.5.3 uses cleartext for stored passwords in unspecified circumstances, which allows remote authenticated users to obtain sensitive information by reading database fields.

Affected products

EMC Corporation/Rsa Archer Grc3 versions
cpe:2.3:a:emc:rsa_archer_grc:5.5.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:emc:rsa_archer_grc:5.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:emc:rsa_archer_grc:5.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:emc:rsa_archer_grc:5.5.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.com/files/133682/RSA-Archer-GRC-5.5.3-XSS-Improper-Authorization-Information-Disclosure.htmlnvdThird Party AdvisoryVDB Entry
seclists.org/bugtraq/2015/Sep/105nvdThird Party Advisory
www.securitytracker.com/id/1033649nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000