Is CVE-2022-30584 actively exploited?

CVE-2022-30584 has no public evidence of in-the-wild exploitation as of 2024-11-21.

What is the CVSS score for CVE-2022-30584?

CVE-2022-30584 has a CVSS score of 9.6 (CRITICAL severity). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H.

How do I patch CVE-2022-30584?

Patch guidance is available from rsa security advisories. CVEDatabase generates AI-assisted remediation guidance on demand for CVE-2022-30584.

Which products are affected by CVE-2022-30584?

2 products: rsa archer, rsa archer.

Fix CVE-2022-30584 - CRITICAL rsa archer

Description

Archer Platform 6.3 before 6.11 (6.11.0.0) contains an Improper Access Control Vulnerability within SSO ADFS functionality that could potentially be exploited by malicious users to compromise the affected system. 6.10 P3 (6.10.0.3) and 6.9 SP3 P4 (6.9.3.4) are also fixed releases.

CVSS Metrics

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Attack Vector: network
Complexity: low
Privileges: none
User Action: required
Scope: changed
Confidentiality: high
Integrity: high
Availability: high
Weaknesses: NVD-CWE-Other

Metadata

Primary Vendor: RSA
Published: 5/26/2022
Last Modified: 11/21/2024
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

CVE-2022-30584

Description

CVSS Metrics

Metadata

Affected Products

Remediation Guidance

Executive Summary