Description
Multiple cross-site request forgery (CSRF) vulnerabilities in EMC RSA Archer GRC 5.5 SP1 before P3 allow remote attackers to hijack the authentication of arbitrary users.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1033300
Mailing List mailing-list
x_refsource_bugtraq
http://seclists.org/bugtraq/2015/Aug/85
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/76404
Scores
EPSS
0.0013
EPSS Percentile
31.4%
Details
CWE
CWE-352
Status
published
Products (1)
emc/rsa_archer_egrc
5.5 sp1
Published
Aug 20, 2015
Tracked Since
Feb 18, 2026