EMC RSA Archer, versions prior to 6.2.0.8, contains a redirect vulnerability in the QuickLinks feature. A remote attacker may potentially exploit this vulnerability to redirect genuine users to phishing websites with the intent of obtaining sensitive information from the users.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2018/Mar/12 | Mailing List Third Party Advisory |
http://www.securitytracker.com/id/1040457 | Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/103319 | Third Party Advisory VDB Entry |
Configurations
Information
Published : 2018-03-08 07:29
Updated : 2018-03-26 10:50
NVD link : CVE-2018-1220
Mitre link : CVE-2018-1220
JSON object : View
CWE
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')
Products Affected
emc
- rsa_archer