Vulnerabilities
Vulnerable Software
Hp:  >> Arcsight Logger  >> 5.2  Security Vulnerabilities
Stored XSS vulnerability in Micro Focus ArcSight Logger, affects versions prior to Logger 6.7.1 HotFix 6.7.1.8262.0. This vulnerability could allow Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting').
CVSS Score
5.4
EPSS Score
0.006
Published
2019-10-04
Mitigates a stored cross site scripting issue in ArcSight Logger versions prior to 6.7.1
CVSS Score
4.6
EPSS Score
0.011
Published
2019-07-24
Mitigates a potential information leakage issue in ArcSight Logger versions prior to 6.7.
CVSS Score
6.5
EPSS Score
0.016
Published
2019-03-25
Mitigates a remote code execution issue in ArcSight Logger versions prior to 6.7.
CVSS Score
7.8
EPSS Score
0.014
Published
2019-03-25
Mitigates a potential remote code execution issue in ArcSight Logger versions prior to 6.7.
CVSS Score
9.8
EPSS Score
0.069
Published
2019-03-25
Mitigates a stored/reflected XSS issue in ArcSight Logger versions prior to 6.7.
CVSS Score
6.1
EPSS Score
0.013
Published
2019-03-25
Mitigates a XML External Entity Parsing issue in ArcSight Logger versions prior to 6.7.
CVSS Score
7.1
EPSS Score
0.017
Published
2019-03-25
Mitigates a directory traversal issue in ArcSight Logger versions prior to 6.7.
CVSS Score
6.5
EPSS Score
0.042
Published
2019-03-25
HPE ArcSight Logger before 6.1P1 allows remote authenticated users to execute arbitrary code via unspecified input to the (1) Intellicus or (2) client-certificate upload component.
CVSS Score
6.3
EPSS Score
0.009
Published
2016-01-16
HPE ArcSight Logger before 6.1P1 allows remote attackers to execute arbitrary code via unspecified input to the (1) Intellicus or (2) client-certificate upload component.
CVSS Score
7.3
EPSS Score
0.023
Published
2016-01-16


Contact Us

Shodan ® - All rights reserved