lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Fri, 6 Oct 2017 16:27:39 +0000 From: EMC Product Security Response Center <Security_Alert@....com> To: "fulldisclosure@...lists.org" <fulldisclosure@...lists.org> Subject: [FD] ESA-2017-111: RSA Archer® GRC Platform Multiple Vulnerabilities -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ESA-2017-111: RSA Archer® GRC Platform Multiple Vulnerabilities EMC Identifier: ESA-2017-111 CVE Identifier: CVE-2017-8016, CVE-2017-8025, CVE-2017-14369, CVE-2017-14370, CVE-2017-14371, CVE-2017-14372 Severity Rating: CVSSv3 Base Score: See below for scores of individual CVEs Affected Products: RSA Archer versions prior to 6.2.0.5 Summary: RSA Archer GRC 6.2.0.5 Platform contains fixes for several vulnerabilities that could potentially be exploited by malicious users to compromise an affected system. Details: Multiple components within the RSA Archer product have been updated to address various vulnerabilities: •Stored Cross Site Scripting Vulnerabilities (CVE-2017-8016 and CVE-2017-14370) RSA Archer is affected by stored cross-site scripting vulnerabilities via Questionnaire ID (CVE-2017-8016) and Source Asset ID (CVE-2017-14370) fields. An authenticated attacker may potentially exploit these vulnerabilities to execute arbitrary HTML in the user’s browser session in the context of the affected RSA Archer application. CVSSv3 Base Score: 5.4 (AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N) •Arbitrary File Upload Vulnerability (CVE-2017-8025) RSA Archer is affected by an arbitrary file upload vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to upload malicious files via attachments to arbitrary paths on the web server. CVSSv3 Base Score: 8.1 (AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H) •Reflected Cross Site Scripting Vulnerabilities (CVE-2017-14371 and CVE-2017-14372) RSA Archer is affected by reflected cross-site scripting vulnerabilities via request URL parameter (CVE-2017-14371) and certain RSA Archer Help pages (CVE-2017-14372). Attackers could potentially exploit these vulnerabilities to execute arbitrary HTML in the user’s browser session in the context of the affected RSA Archer application. CVSSv3 Base Score: 6.1 (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N) •Privilege Escalation Vulnerability (CVE-2017-14369) RSA Archer is affected by a privilege escalation vulnerability. A low privileged RSA Archer user may potentially exploit this vulnerability to elevate their privileges and export certain application records. CVSSv3 Base Score: 4.3 (AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N) Recommendation: RSA recommends all customers upgrade to the version mentioned below at the earliest opportunity. •RSA Archer GRC 6.2 Patch 6 For additional documentation, downloads, and more, visit the RSA Archer Suite page on RSA Link. Credits: RSA would like to thank the following individuals for reporting these vulnerabilities: •CVE-2017-8025 and CVE-2017-14371: Erlend Leiknes, Security Consultant with Mnemonic AS •CVE-2017-14369: Mohit Rawat -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQEcBAEBCAAGBQJZ1mSzAAoJEHbcu+fsE81ZQXoH/0dqA4FNhkFLsMudtv8ekFYC orKKSQPISC0+WuS4OeaX1JPsIB5oqxJnYygevhnZhpm+20xXw6F4Xfmu34z1tEEc 2AkWruWOCzW0+5euhLVvWXlgEoB3JeXZyK8nMPJs2i70ILuyRw3wSZc0EAXaqaY4 769kmn11Nj7UHlhnzv5ZekOZp2ZgIp6kaZH/8SD+sSZ4/IBmzQ448RBs6wAL1LCQ 7U1WZFE7Cb45ddChVbOmbqvIrxBQ4RP6Xhiy0+fiqmbFGjeb5pMOcPXLMSCemW7g hDfCbk8tmDSD7Q2+3HlHj7foOcHD0HIxKRENFnMHdKu36zD64CodjEDefPiISEk= =7h/y -----END PGP SIGNATURE----- _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Powered by blists - more mailing lists