CVE-2020-29537

Archer before 6.8 P2 (6.8.0.2) is affected by an open redirect vulnerability. A remote privileged attacker may potentially redirect legitimate users to arbitrary web sites and conduct phishing attacks. The attacker could then steal the victims' credentials and silently authenticate them to the Archer application without the victims realizing an attack occurred.

CVSS v3 5.4 MEDIUM
CVSS v2.0 4.9 MEDIUM

5.4^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.3 / Impact : 2.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

4.9^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:S/C:P/I:P/A:N

Exploitability : 6.8 / Impact : 4.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
https://community.rsa.com/docs/DOC-115223	Vendor Advisory
https://www.rsa.com/en-us/company/vulnerability-response-policy	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:rsa:archer::::::::
	cpe:2.3:a:rsa:archer::::::::
	cpe:2.3:a:rsa:archer::::::::

History

03 Feb 2021, 19:05

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 4.9 v3 : 5.4
CWE		CWE-601
CPE		cpe:2.3:a:rsa:archer::::::::
References	~~(CONFIRM) https://community.rsa.com/docs/DOC-115223 -~~	(CONFIRM) https://community.rsa.com/docs/DOC-115223 - Vendor Advisory
References	~~(MISC) https://www.rsa.com/en-us/company/vulnerability-response-policy -~~	(MISC) https://www.rsa.com/en-us/company/vulnerability-response-policy - Vendor Advisory

29 Jan 2021, 07:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2021-01-29 07:15

Updated : 2023-12-10 13:41

NVD link : CVE-2020-29537

Mitre link : CVE-2020-29537

CVE.ORG link : CVE-2020-29537

JSON object : View

Products Affected

rsa

archer

CWE

CWE-601

URL Redirection to Untrusted Site ('Open Redirect')

{"id": "CVE-2020-29537", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.9, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:N", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.3}, {"type": "Secondary", "source": "cve@mitre.org", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.6, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 2.5, "exploitabilityScore": 2.1}]}, "published": "2021-01-29T07:15:17.640", "references": [{"url": "https://community.rsa.com/docs/DOC-115223", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.rsa.com/en-us/company/vulnerability-response-policy", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-601"}]}], "descriptions": [{"lang": "en", "value": "Archer before 6.8 P2 (6.8.0.2) is affected by an open redirect vulnerability. A remote privileged attacker may potentially redirect legitimate users to arbitrary web sites and conduct phishing attacks. The attacker could then steal the victims' credentials and silently authenticate them to the Archer application without the victims realizing an attack occurred."}, {"lang": "es", "value": "Archer versiones anteriores a 6.8 P2 (6.8.0.2), est\u00e1 afectado por una vulnerabilidad de redireccionamiento abierto. Un atacante privilegiado remoto puede potencialmente redireccionar a usuarios leg\u00edtimos a sitios web arbitrarios y llevar a cabo ataques de phishing. El atacante podr\u00eda entonces robar las credenciales de las v\u00edctimas y autenticarse silenciosamente en la aplicaci\u00f3n Archer sin que las v\u00edctimas se percaten que ocurri\u00f3 un ataque"}], "lastModified": "2021-02-03T19:05:53.533", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:rsa:archer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9D2F9FD3-9AE0-4C22-8983-122137A37E3C", "versionEndExcluding": "6.6.0.8", "versionStartIncluding": "6.6"}, {"criteria": "cpe:2.3:a:rsa:archer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9D6A7FD0-CF21-4B3D-8E75-A9E602DA6E80", "versionEndExcluding": "6.7.0.8", "versionStartIncluding": "6.7"}, {"criteria": "cpe:2.3:a:rsa:archer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4365420B-410A-4162-8BB0-E9AA580E6447", "versionEndExcluding": "6.8.0.2", "versionStartIncluding": "6.8"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}