[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[FD] ESA-2017-111: RSA Archer® GRC Platform Multiple Vulnerabilities
- To: "fulldisclosure@xxxxxxxxxxxx" <fulldisclosure@xxxxxxxxxxxx>
- Subject: [FD] ESA-2017-111: RSA Archer® GRC Platform Multiple Vulnerabilities
- From: EMC Product Security Response Center <Security_Alert@xxxxxxx>
- Date: Fri, 6 Oct 2017 16:27:39 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
ESA-2017-111: RSA Archer® GRC Platform Multiple Vulnerabilities
EMC Identifier: ESA-2017-111
CVE Identifier: CVE-2017-8016, CVE-2017-8025, CVE-2017-14369, CVE-2017-14370,
CVE-2017-14371, CVE-2017-14372
Severity Rating: CVSSv3 Base Score: See below for scores of individual CVEs
Affected Products:
RSA Archer versions prior to 6.2.0.5
Summary:
RSA Archer GRC 6.2.0.5 Platform contains fixes for several vulnerabilities that
could potentially be exploited by malicious users to compromise an affected
system.
Details:
Multiple components within the RSA Archer product have been updated to address
various vulnerabilities:
•Stored Cross Site Scripting Vulnerabilities (CVE-2017-8016 and CVE-2017-14370)
RSA Archer is affected by stored cross-site scripting vulnerabilities via
Questionnaire ID (CVE-2017-8016) and Source Asset ID (CVE-2017-14370) fields.
An authenticated attacker may potentially exploit these vulnerabilities to
execute arbitrary HTML in the user’s browser session in the context of the
affected RSA Archer application.
CVSSv3 Base Score: 5.4 (AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N)
•Arbitrary File Upload Vulnerability (CVE-2017-8025)
RSA Archer is affected by an arbitrary file upload vulnerability. A remote
unauthenticated attacker may potentially exploit this vulnerability to upload
malicious files via attachments to arbitrary paths on the web server.
CVSSv3 Base Score: 8.1 (AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)
•Reflected Cross Site Scripting Vulnerabilities (CVE-2017-14371 and
CVE-2017-14372)
RSA Archer is affected by reflected cross-site scripting vulnerabilities via
request URL parameter (CVE-2017-14371) and certain RSA Archer Help pages
(CVE-2017-14372). Attackers could potentially exploit these vulnerabilities to
execute arbitrary HTML in the user’s browser session in the context of the
affected RSA Archer application.
CVSSv3 Base Score: 6.1 (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
•Privilege Escalation Vulnerability (CVE-2017-14369)
RSA Archer is affected by a privilege escalation vulnerability. A low
privileged RSA Archer user may potentially exploit this vulnerability to
elevate their privileges and export certain application records.
CVSSv3 Base Score: 4.3 (AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)
Recommendation:
RSA recommends all customers upgrade to the version mentioned below at the
earliest opportunity.
•RSA Archer GRC 6.2 Patch 6
For additional documentation, downloads, and more, visit the RSA Archer Suite
page on RSA Link.
Credits:
RSA would like to thank the following individuals for reporting these
vulnerabilities:
•CVE-2017-8025 and CVE-2017-14371: Erlend Leiknes, Security Consultant with
Mnemonic AS
•CVE-2017-14369: Mohit Rawat
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iQEcBAEBCAAGBQJZ1mSzAAoJEHbcu+fsE81ZQXoH/0dqA4FNhkFLsMudtv8ekFYC
orKKSQPISC0+WuS4OeaX1JPsIB5oqxJnYygevhnZhpm+20xXw6F4Xfmu34z1tEEc
2AkWruWOCzW0+5euhLVvWXlgEoB3JeXZyK8nMPJs2i70ILuyRw3wSZc0EAXaqaY4
769kmn11Nj7UHlhnzv5ZekOZp2ZgIp6kaZH/8SD+sSZ4/IBmzQ448RBs6wAL1LCQ
7U1WZFE7Cb45ddChVbOmbqvIrxBQ4RP6Xhiy0+fiqmbFGjeb5pMOcPXLMSCemW7g
hDfCbk8tmDSD7Q2+3HlHj7foOcHD0HIxKRENFnMHdKu36zD64CodjEDefPiISEk=
=7h/y
-----END PGP SIGNATURE-----
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/