Vulnerabilities > Archerirm > Archer > 2024.06

DATE CVE VULNERABILITY TITLE RISK
2024-10-22 CVE-2024-49208 Incorrect Authorization vulnerability in Archerirm Archer 2024.03/2024.04/2024.06
Archer Platform 2024.03 before version 2024.08 is affected by an authorization bypass vulnerability related to supporting application files.
network
high complexity
archerirm CWE-863
3.1
2024-10-22 CVE-2024-49209 Incorrect Authorization vulnerability in Archerirm Archer
Archer Platform 2024.03 before version 2024.09 is affected by an API authorization bypass vulnerability related to supporting application files.
network
low complexity
archerirm CWE-863
4.3
2024-10-22 CVE-2024-49210 Cross-site Scripting vulnerability in Archerirm Archer
Reflected XSS was discovered in an iView List Archer Platform UX page in Archer Platform 6.x before version 2024.09.
network
low complexity
archerirm CWE-79
6.1
2024-10-22 CVE-2024-49211 Cross-site Scripting vulnerability in Archerirm Archer
Reflected XSS was discovered in a Dashboard Listing Archer Platform UX page in Archer Platform 6.x before version 2024.08.
network
low complexity
archerirm CWE-79
6.1