VYPR

Vendor CVEs

Archer

All CVEs

53 total · sorted by risk
  • CVE-2020-29536MedJan 29, 2021
    risk 0.28cvss 4.3epss 0.01

    Archer before 6.8 P2 (6.8.0.2) is affected by a path exposure vulnerability. A remote authenticated malicious attacker with access to service files may obtain sensitive information to use it in further attacks.

  • CVE-2018-15780MedJan 3, 2019
    risk 0.28cvss 4.3epss 0.01

    RSA Archer versions prior to 6.5.0.1 contain an improper access control vulnerability. A remote malicious user could potentially exploit this vulnerability to bypass authorization checks and gain read access to restricted user information.

  • CVE-2025-27893LowMar 11, 2025
    risk 0.12cvss 1.8epss 0.00

    In Archer Platform 6 through 6.14.00202.10024, an authenticated user with record creation privileges can manipulate immutable fields, such as the creation date, by intercepting and modifying a Copy request via a GenericContent/Record.aspx?id= URI. NOTE: the Supplier analyzed the…

Page 2 of 2