CVE-2017-5001

EUVD-2017-14111
EMC RSA Archer 5.4.1.3, 5.5.3.1, 5.5.2.3, 5.5.2, 5.5.1.3.1, 5.5.1.1 is affected by an information exposure through an error message vulnerability. A remote low privileged attacker may potentially exploit this vulnerability to use information disclosed in an error message to launch another more focused attack.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 42%
Affected Products (NVD)
VendorProductVersion
emcrsa_archer_egrc
5.4.1.3
emcrsa_archer_egrc
5.5.1.1
emcrsa_archer_egrc
5.5.1.3.1
emcrsa_archer_egrc
5.5.2
emcrsa_archer_egrc
5.5.2.3
emcrsa_archer_egrc
5.5.3.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://seclists.org/fulldisclosure/2017/Jun/49
http://www.securityfocus.com/bid/99354
http://www.securitytracker.com/id/1038815
http://seclists.org/fulldisclosure/2017/Jun/49
http://www.securityfocus.com/bid/99354
http://www.securitytracker.com/id/1038815