Vulnerability Details CVE-2018-6504
A potential Cross-Site Request Forgery (CSRF) vulnerability has been identified in ArcSight Management Center (ArcMC) in all versions prior to 2.81. This vulnerability could be exploited to allow for Cross-Site Request Forgery (CSRF).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.6%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
Products affected by CVE-2018-6504
-
cpe:2.3:a:microfocus:arcsight_management_center:-
-
cpe:2.3:a:microfocus:arcsight_management_center:1.0
-
cpe:2.3:a:microfocus:arcsight_management_center:2.0
-
cpe:2.3:a:microfocus:arcsight_management_center:2.1
-
cpe:2.3:a:microfocus:arcsight_management_center:2.2
-
cpe:2.3:a:microfocus:arcsight_management_center:2.21
-
cpe:2.3:a:microfocus:arcsight_management_center:2.5
-
cpe:2.3:a:microfocus:arcsight_management_center:2.51
-
cpe:2.3:a:microfocus:arcsight_management_center:2.6
-
cpe:2.3:a:microfocus:arcsight_management_center:2.6.1
-
cpe:2.3:a:microfocus:arcsight_management_center:2.61
-
cpe:2.3:a:microfocus:arcsight_management_center:2.7
-
cpe:2.3:a:microfocus:arcsight_management_center:2.7.0
-
cpe:2.3:a:microfocus:arcsight_management_center:2.8
-
cpe:2.3:a:microfocus:arcsight_management_center:2.8.1
-
cpe:2.3:a:microfocus:arcsight_management_center:2.9.0
-
cpe:2.3:a:microfocus:arcsight_management_center:2.9.1
-
cpe:2.3:a:microfocus:arcsight_management_center:2.9.2
-
cpe:2.3:a:microfocus:arcsight_management_center:2.9.3
-
cpe:2.3:a:microfocus:arcsight_management_center:2.9.4
-
cpe:2.3:a:microfocus:arcsight_management_center:2.9.5
-
cpe:2.3:a:microfocus:arcsight_management_center:2.9.6