CVE-2020-29536

Published: Jan 29, 2021Modified: Nov 21, 2024

4.3

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Exploitability: 2.8 / Impact: 1.4

Source: NVD

Description

Archer before 6.8 P2 (6.8.0.2) is affected by a path exposure vulnerability. A remote authenticated malicious attacker with access to service files may obtain sensitive information to use it in further attacks.

Affected (3)

Products: Rsa: Archer

Rsa

1 product

Archer

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Rsa Archer	From 6.6 to 6.6.0.8
Rsa Archer	From 6.7 to 6.7.0.8
Rsa Archer	From 6.8 to 6.8.0.2

Related CWEs

CWE-327

Use of a Broken or Risky Cryptographic Algorithm

The product uses a broken or risky cryptographic algorithm or protocol.

References (4)

https://community.rsa.com/docs/DOC-115223

Source: cve@mitre.org

Vendor Advisory

https://www.rsa.com/en-us/company/vulnerability-response-policy

Source: cve@mitre.org

Vendor Advisory

https://community.rsa.com/docs/DOC-115223

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://www.rsa.com/en-us/company/vulnerability-response-policy

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.