CVE-2016-0899 in RSA Archer eGRCИнформация

Сводка

по MITRE

EMC RSA Archer GRC 5.5.x before 5.5.3.4 allows remote authenticated users to read the web.config.bak file, and obtain sensitive credential information, by modifying the IIS configuration to set a Content-Type header for .bak files.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Резервировать

17.12.2015

Раскрытие

04.07.2016

Модерация

принято

Вход

VDB-87881

CPE

готов

CWE

CWE-200 (Подтверждённый)

CVSS

6.3 (NVD)

EPSS

0.00830

KEV

Нет

Деятельности

Очень низкий

Сектор

Lawfirm, Finance, ...

Источники

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-0899
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-0899
CVE Details	https://www.cvedetails.com/cve/CVE-2016-0899/

◂ Предыдущий Обзор Далее ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!