Vulnerability Details : CVE-2014-2517
Unspecified vulnerability in EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote authenticated users to gain privileges via unknown vectors.
Exploit prediction scoring system (EPSS) score for CVE-2014-2517
Probability of exploitation activity in the next 30 days: 0.36%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 68 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2014-2517
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.5
|
MEDIUM | AV:N/AC:L/Au:S/C:P/I:P/A:P |
8.0
|
6.4
|
NIST |
References for CVE-2014-2517
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/95363
EMC RSA Archer GRC privilege escalation CVE-2014-2517 Vulnerability Report
- http://archives.neohapsis.com/archives/bugtraq/2014-08/0097.html
-
http://www.securitytracker.com/id/1030738
RSA Archer eGRC Flaws Let Remote Authenticated Users Gain Elevated Privileges and Remote Users Conduct Cross-Site Request Forgery Attacks - SecurityTracker
-
http://www.securityfocus.com/bid/69287
EMC RSA Archer GRC CVE-2014-2517 Unspecified Privilege Escalation Vulnerability
Products affected by CVE-2014-2517
- cpe:2.3:a:emc:rsa_archer_egrc:5.3:*:*:*:*:*:*:*
- cpe:2.3:a:emc:rsa_archer_egrc:5.4:*:*:*:*:*:*:*
- cpe:2.3:a:emc:rsa_archer_egrc:5.5:*:*:*:*:*:*:*
- cpe:2.3:a:emc:rsa_archer_egrc:5.4:sp1:*:*:*:*:*:*