VYPR
Medium severity5.3NVD Advisory· Published Mar 30, 2022· Updated Jun 17, 2026

CVE-2022-26949

CVE-2022-26949

Description

Archer 6.x through 6.9 SP2 P1 (6.9.2.1) contains an improper access control vulnerability on attachments. A remote authenticated malicious user could potentially exploit this vulnerability to gain access to files that should only be allowed by extra privileges.

Affected products

2
  • Archer/Archercpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 6.x through 6.9 SP2 P1 (6.9.2.1)

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.