CVSS: 6.8EPSS: 0%CPEs: 4EXPL: 0CVE-2014-0641
https://notcve.org/view.php?id=CVE-2014-0641
Cross-site request forgery (CSRF) vulnerability in EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote attackers to hijack the authentication of arbitrary users. Vulnerabilidad de CSRF en EMC RSA Archer GRC Platform 5.x anterior a 5.5 SP1 permite a atacantes remotos secuestrar la autenticación de usuarios arbitrarios. • http://archives.neohapsis.com/archives/bugtraq/2014-08/0097.html http://www.securityfocus.com/bid/69289 http://www.securitytracker.com/id/1030738 https://exchange.xforce.ibmcloud.com/vulnerabilities/95361 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0CVE-2014-2505
https://notcve.org/view.php?id=CVE-2014-2505
EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote attackers to trigger the download of arbitrary code, and consequently change the product's functionality, via unspecified vectors. EMC RSA Archer GRC Platform 5.x anterior a 5.5 SP1 permite a atacantes remotos provocar la descarga de código arbitrario, y como consecuencia cambiar la funcionalidad del producto, a través de vectores no especificados. • http://archives.neohapsis.com/archives/bugtraq/2014-08/0097.html http://www.securityfocus.com/bid/69290 http://www.securitytracker.com/id/1030738 https://exchange.xforce.ibmcloud.com/vulnerabilities/95360 •
CVSS: 4.0EPSS: 0%CPEs: 4EXPL: 0CVE-2014-0640
https://notcve.org/view.php?id=CVE-2014-0640
EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote authenticated users to bypass intended restrictions on resource access via unspecified vectors. EMC RSA Archer GRC Platform 5.x anterior a 5.5 SP1 permite a usuarios remotos autenticados evadir las restricciones sobre el acceso a recursos a través de vectores no especificados. • http://archives.neohapsis.com/archives/bugtraq/2014-08/0097.html http://www.securityfocus.com/bid/69288 http://www.securitytracker.com/id/1030738 https://exchange.xforce.ibmcloud.com/vulnerabilities/95362 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2014-2517
https://notcve.org/view.php?id=CVE-2014-2517
Unspecified vulnerability in EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote authenticated users to gain privileges via unknown vectors. Vulnerabilidad no especificada en EMC RSA Archer GRC Platform 5.x anterior a 5.5 SP1 permite a usuarios remotos autenticados ganar privilegios a través de vectores desconocidos. • http://archives.neohapsis.com/archives/bugtraq/2014-08/0097.html http://www.securityfocus.com/bid/69287 http://www.securitytracker.com/id/1030738 https://exchange.xforce.ibmcloud.com/vulnerabilities/95363 •
CVSS: 6.3EPSS: 0%CPEs: 11EXPL: 0CVE-2014-2521
https://notcve.org/view.php?id=CVE-2014-2521
EMC Documentum Content Server before 6.7 SP2 P16 and 7.x before 7.1 P07 allows remote authenticated users to read sensitive object metadata via an RPC command. EMC Documentum Content Server anterior a 6.7 SP2 P16 y 7.x anterior a 7.1 P07 permite a usuarios remotos autenticados leer metadatos sensibles de objetos a través de un comando RPC. • http://secunia.com/advisories/60571 http://www.securityfocus.com/archive/1/533162/30/0/threaded http://www.securityfocus.com/bid/69276 http://www.securitytracker.com/id/1030743 https://exchange.xforce.ibmcloud.com/vulnerabilities/95370 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •