cvedb.io
CVE-2017-14370
MEDIUM · CVSS 5.4
EPSS exploitation probability: 0%
Published 2017-10-11T19:29:00.253 · Last modified 2026-06-17T01:06:01.760

Summary

RSA Archer GRC Platform prior to 6.2.0.5 is affected by stored cross-site scripting via the Source Asset ID field. An authenticated attacker may potentially exploit this to execute arbitrary HTML in the user's browser session in the context of the affected RSA Archer application.

Affected products

rsa — archer_grc_platform

Does this affect you?

Add your gear to cvedb and we'll alert you only when rsa ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.