CVE-2014-2505

EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote attackers to trigger the download of arbitrary code, and consequently change the product's functionality, via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.4 UNKNOWN
ADJACENT_NETWORK
MEDIUM
AV:A/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
emcrsa_archer_egrc
5.3
emcrsa_archer_egrc
5.4
emcrsa_archer_egrc
5.4:sp1
emcrsa_archer_egrc
5.5
𝑥
= Vulnerable software versions
References
http://archives.neohapsis.com/archives/bugtraq/2014-08/0097.html
http://www.securityfocus.com/bid/69290
http://www.securitytracker.com/id/1030738
https://exchange.xforce.ibmcloud.com/vulnerabilities/95360
http://archives.neohapsis.com/archives/bugtraq/2014-08/0097.html
http://www.securityfocus.com/bid/69290
http://www.securitytracker.com/id/1030738
https://exchange.xforce.ibmcloud.com/vulnerabilities/95360