cvedb.io
CVE-2017-8016
MEDIUM · CVSS 5.4
EPSS exploitation probability: 0%
Published 2017-10-11T19:29:00.363 · Last modified 2026-06-17T01:25:38.657

Summary

RSA Archer GRC Platform prior to 6.2.0.5 is affected by stored cross-site scripting via the Questionnaire ID field. An authenticated attacker may potentially exploit this to execute arbitrary HTML in the user's browser session in the context of the affected RSA Archer application.

Affected products

emc — archer_grc_platform

Does this affect you?

Add your gear to cvedb and we'll alert you only when emc ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.