VYPR

Archer

by Archer

CVEs (24)

  • CVE-2020-29537MedJan 29, 2021
    risk 0.30cvss 4.6epss 0.01

    Archer before 6.8 P2 (6.8.0.2) is affected by an open redirect vulnerability. A remote privileged attacker may potentially redirect legitimate users to arbitrary web sites and conduct phishing attacks. The attacker could then steal the victims' credentials and silently…

  • CVE-2020-29536MedJan 29, 2021
    risk 0.28cvss 4.3epss 0.01

    Archer before 6.8 P2 (6.8.0.2) is affected by a path exposure vulnerability. A remote authenticated malicious attacker with access to service files may obtain sensitive information to use it in further attacks.

  • CVE-2018-15780MedJan 3, 2019
    risk 0.28cvss 4.3epss 0.01

    RSA Archer versions prior to 6.5.0.1 contain an improper access control vulnerability. A remote malicious user could potentially exploit this vulnerability to bypass authorization checks and gain read access to restricted user information.

  • CVE-2025-27893LowMar 11, 2025
    risk 0.12cvss 1.8epss 0.00

    In Archer Platform 6 through 6.14.00202.10024, an authenticated user with record creation privileges can manipulate immutable fields, such as the creation date, by intercepting and modifying a Copy request via a GenericContent/Record.aspx?id= URI. NOTE: the Supplier analyzed the…

Page 2 of 2