CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-2779

Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 uses world-writable permissions for exported report files, which allows local users to change or delete log data by modifying a file, a different vulnerability than CVE-2011-0770.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.5%

CVSS Severity

CVSS v2 Score 3.6

References

Products affected by CVE-2011-2779

Hp » Windows Event Log Smartconnector » Version: Any

cpe:2.3:a:hp:windows_event_log_smartconnector:*
Hp » Arcsight C1000 Appliance » Version: Any

cpe:2.3:h:hp:arcsight_c1000_appliance:*
Hp » Arcsight C1300 Appliance » Version: Any

cpe:2.3:h:hp:arcsight_c1300_appliance:*
Hp » Arcsight C3200 Appliance » Version: Any

cpe:2.3:h:hp:arcsight_c3200_appliance:*
Hp » Arcsight C3400 Appliance » Version: Any

cpe:2.3:h:hp:arcsight_c3400_appliance:*
Hp » Arcsight C5200 Appliance » Version: Any

cpe:2.3:h:hp:arcsight_c5200_appliance:*
Hp » Arcsight C5400 Appliance » Version: Any

cpe:2.3:h:hp:arcsight_c5400_appliance:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-2779

Products

Pricing

Contact Us