Hp: >> Arcsight Logger Security Vulnerabilities
Unrestricted file upload vulnerability in Micro Focus ArcSight Logger, version 6.7.0 and later. This vulnerability could allow Unrestricted Upload of File with Dangerous type.
CVSS Score
8.8
EPSS Score
0.005
Published
2019-10-04
Stored XSS vulnerability in Micro Focus ArcSight Logger, affects versions prior to Logger 6.7.1 HotFix 6.7.1.8262.0. This vulnerability could allow Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting').
CVSS Score
5.4
EPSS Score
0.002
Published
2019-10-04
Mitigates a stored cross site scripting issue in ArcSight Logger versions prior to 6.7.1
CVSS Score
4.6
EPSS Score
0.002
Published
2019-07-24
Mitigates a potential information leakage issue in ArcSight Logger versions prior to 6.7.
CVSS Score
6.5
EPSS Score
0.004
Published
2019-03-25
Mitigates a remote code execution issue in ArcSight Logger versions prior to 6.7.
CVSS Score
7.8
EPSS Score
0.004
Published
2019-03-25
Mitigates a potential remote code execution issue in ArcSight Logger versions prior to 6.7.
CVSS Score
9.8
EPSS Score
0.074
Published
2019-03-25
Mitigates a stored/reflected XSS issue in ArcSight Logger versions prior to 6.7.
CVSS Score
6.1
EPSS Score
0.004
Published
2019-03-25
Mitigates a XML External Entity Parsing issue in ArcSight Logger versions prior to 6.7.
CVSS Score
7.1
EPSS Score
0.005
Published
2019-03-25
Mitigates a directory traversal issue in ArcSight Logger versions prior to 6.7.
CVSS Score
6.5
EPSS Score
0.016
Published
2019-03-25
HPE ArcSight Logger before 6.1P1 allows remote authenticated users to execute arbitrary code via unspecified input to the (1) Intellicus or (2) client-certificate upload component.
CVSS Score
6.3
EPSS Score
0.007
Published
2016-01-16
Page 1