CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-9522

Cross Site Scripting (XSS) vulnerability in Micro Focus ArcSight Enterprise Security Manager (ESM) product, Affecting versions 7.0.x, 7.2 and 7.2.1 . The vulnerabilities could be remotely exploited resulting in Cross-Site Scripting (XSS) or information disclosure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.2%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://softwaresupport.softwaregrp.com/doc/KM03650888
https://softwaresupport.softwaregrp.com/doc/KM03650888

Products affected by CVE-2020-9522

Microfocus » Arcsight Enterprise Security Manager Express » Version: 7.0.0

cpe:2.3:a:microfocus:arcsight_enterprise_security_manager_express:7.0.0
Microfocus » Arcsight Enterprise Security Manager Express » Version: 7.2

cpe:2.3:a:microfocus:arcsight_enterprise_security_manager_express:7.2
Microfocus » Arcsight Enterprise Security Manager Express » Version: 7.2.1

cpe:2.3:a:microfocus:arcsight_enterprise_security_manager_express:7.2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9522

Products

Pricing

Contact Us