CVE-2022-37316

CVSS 6.5 MEDIUMEPSS 0.6%

Archer Platform 6.8 before 6.11 P3 (6.11.0.3) contains an improper API access control vulnerability in a multi-instance system that could potentially present unauthorized metadata to an authenticated user of the affected system. 6.10 P3 HF1 (6.10.0.3.1) is also a fixed release.

CVSS:3.1/AC:L/AV:N/A:N/C:H/I:N/PR:L/S:U/UI:N

Produtos afetados

n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://archerirm.com https://www.archerirm.community/t5/security-advisories/archer-update-for-improper-access-control/ta-p/682059