Improper API Access Control Vulnerability in Archer Platform 6.8 to 6.11 P3

Improper API Access Control Vulnerability in Archer Platform 6.8 to 6.11 P3

CVE-2022-37316 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Archer Platform 6.8 before 6.11 P3 (6.11.0.3) contains an improper API access control vulnerability in a multi-instance system that could potentially present unauthorized metadata to an authenticated user of the affected system. 6.10 P3 HF1 (6.10.0.3.1) is also a fixed release.

Learn more about our Api Penetration Testing.