The Tableau integration in RSA Archer 6.4 P1 (6.4.0.1) through 6.9 P2 (6.9.0.2) is affected by an insecure credential storage vulnerability. An malicious attacker with access to the Tableau workbook file may obtain access to credential information to use it in further attacks.
References
Link | Resource |
---|---|
https://community.rsa.com/t5/archer-product-advisories/rsa-2021-04-archer-an-rsa-business-update-for-multiple/ta-p/603223 | Vendor Advisory |
https://www.rsa.com/en-us/company/vulnerability-response-policy | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
04 Jun 2021, 17:36
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-522 | |
References | (MISC) https://www.rsa.com/en-us/company/vulnerability-response-policy - Vendor Advisory | |
References | (CONFIRM) https://community.rsa.com/t5/archer-product-advisories/rsa-2021-04-archer-an-rsa-business-update-for-multiple/ta-p/603223 - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 2.1
v3 : 5.5 |
CPE | cpe:2.3:a:rsa:archer:*:*:*:*:*:*:*:* |
26 May 2021, 04:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-05-26 04:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-29253
Mitre link : CVE-2021-29253
CVE.ORG link : CVE-2021-29253
JSON object : View
Products Affected
rsa
- archer
CWE
CWE-522
Insufficiently Protected Credentials