CVE-2024-26312

Published: May 6, 2024Modified: Mar 18, 2025

4.3

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Exploitability: 2.8 / Impact: 1.4

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

Archer Platform 6 before 2024.03 contains a sensitive information disclosure vulnerability. An authenticated attacker could potentially obtain access to sensitive information via a popup warning message.

Affected (1)

Products: Archerirm: Archer

Archerirm

1 product

Archer

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Archerirm Archer	Before 2024.03

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (4)

https://archerirm.com

Source: cve@mitre.org

Product

https://www.archerirm.community/t5/platform-announcements/archer-update-for-multiple-vulnerabilities/ta-p/720963

Source: cve@mitre.org

Vendor Advisory

https://archerirm.com

Source: af854a3a-2127-422b-91ae-364da2661108

Product

https://www.archerirm.community/t5/platform-announcements/archer-update-for-multiple-vulnerabilities/ta-p/720963

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.