CVE-2020-29536

Archer before 6.8 P2 (6.8.0.2) is affected by a path exposure vulnerability. A remote authenticated malicious attacker with access to service files may obtain sensitive information to use it in further attacks.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
mitreCNA
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AC:L/AV:N/A:N/C:L/I:N/PR:L/S:U/UI:N
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 22%
VendorProductVersion
rsaarcher
6.6 ≤
𝑥
< 6.6.0.8
rsaarcher
6.7 ≤
𝑥
< 6.7.0.8
rsaarcher
6.8 ≤
𝑥
< 6.8.0.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://community.rsa.com/docs/DOC-115223
https://www.rsa.com/en-us/company/vulnerability-response-policy
https://community.rsa.com/docs/DOC-115223
https://www.rsa.com/en-us/company/vulnerability-response-policy