CVE-2012-2293
RSA Archer SmartSuite Framework 4.x and RSA Archer GRC < 5.2SP1 - Authenticated Path Traversal and Arbitrary File Write
Title source: llmDescription
Directory traversal vulnerability in EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 allows remote authenticated users to upload files, and consequently execute arbitrary code, via a relative path.
References (1)
Core 1
Core References
Third Party Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2013-02/0001.html
Scores
EPSS
0.0132
EPSS Percentile
80.1%
Details
CWE
CWE-22
Status
published
Products (5)
emc/rsa_archer_egrc
5.0
emc/rsa_archer_egrc
5.1
emc/rsa_archer_egrc
5.2
emc/rsa_archer_smartsuite
4.3
emc/rsa_archer_smartsuite
4.5
Published
Feb 06, 2013
Tracked Since
Feb 18, 2026