VYPR
Medium severity5.4NVD Advisory· Published Mar 30, 2022· Updated Jun 17, 2026

CVE-2022-26950

CVE-2022-26950

Description

Archer 6.x through 6.9 P2 (6.9.0.2) is affected by an open redirect vulnerability. A remote unprivileged attacker may potentially redirect legitimate users to arbitrary web sites and conduct phishing attacks. The attacker could then steal the victims' credentials and silently authenticate them to the Archer application without the victims realizing an attack occurred.

Affected products

2
  • Archer/Archercpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 6.x through 6.9 P2 (6.9.0.2)

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.