Improper Access Control Vulnerability in EMC RSA Archer API

Improper Access Control Vulnerability in EMC RSA Archer API

CVE-2018-1219 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

EMC RSA Archer, versions prior to 6.2.0.8, contains an improper access control vulnerability on an API which is used to enumerate user information. A remote authenticated malicious user can potentially exploit this vulnerability to gather information about the user base and may use this information in subsequent attacks.

Learn more about our Api Penetration Testing.