CVE-2020-5333 : Security Advisory and Response

RSA Archer, versions prior to 6.7 P3 (6.7.0.3), contain an authorization bypass vulnerability in the REST API, allowing a remote authenticated malicious user to view unauthorized information.

Understanding CVE-2020-5333

RSA Archer software by Dell is affected by an authorization bypass vulnerability that could be exploited by a remote authenticated attacker.

What is CVE-2020-5333?

CVE-2020-5333 is a vulnerability in RSA Archer software versions prior to 6.7 P3, allowing unauthorized access to information through the REST API.

The Impact of CVE-2020-5333

The vulnerability poses a medium severity risk, with a CVSS base score of 4.3. An attacker could potentially view sensitive data by exploiting this flaw.

Technical Details of CVE-2020-5333

RSA Archer vulnerability details and affected systems.

Vulnerability Description

The vulnerability in RSA Archer versions prior to 6.7 P3 allows an authenticated malicious user to bypass authorization and access unauthorized information via the REST API.

Affected Systems and Versions

Product: RSA Archer
Vendor: Dell
Versions Affected: Prior to 6.7 P3 (6.7.0.3)

Exploitation Mechanism

Attack Complexity: Low
Attack Vector: Network
Privileges Required: Low
User Interaction: None
Scope: Unchanged
Confidentiality Impact: Low
Integrity Impact: None
Availability Impact: None

Mitigation and Prevention

Steps to mitigate and prevent exploitation of CVE-2020-5333.

Immediate Steps to Take

Update RSA Archer to version 6.7 P3 or later to patch the vulnerability.
Monitor and restrict access to the REST API to authorized users only.

Long-Term Security Practices

Regularly update and patch software to prevent vulnerabilities.
Conduct security assessments and audits to identify and address potential weaknesses.

Patching and Updates

Apply security updates and patches provided by Dell for RSA Archer to ensure ongoing protection.