Arcsight Logger

arcsight_logger

Vendor: Hp • 19 CVEs

CVEs (19)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-11656 1Hp 1Arcsight Logger Nov 21, 2024 Oct 4, 2019 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 Stored XSS vulnerability in Micro Focus ArcSight Logger, affects versions prior to Logger 6.7.1 HotFix 6.7.1.8262.0. This vulnerability could allow Improper Neutralization of Input During Web Page Generation ('Cross-site...Show more Stored XSS vulnerability in Micro Focus ArcSight Logger, affects versions prior to Logger 6.7.1 HotFix 6.7.1.8262.0. This vulnerability could allow Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting').Show less
CVE-2019-11655 1Hp 1Arcsight Logger Nov 21, 2024 Oct 4, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Unrestricted file upload vulnerability in Micro Focus ArcSight Logger, version 6.7.0 and later. This vulnerability could allow Unrestricted Upload of File with Dangerous type.
CVE-2019-3485 1Hp 1Arcsight Logger Nov 21, 2024 Jul 24, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Mitigates a stored cross site scripting issue in ArcSight Logger versions prior to 6.7.1
CVE-2019-3484 1Hp 1Arcsight Logger Nov 21, 2024 Mar 25, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Mitigates a remote code execution issue in ArcSight Logger versions prior to 6.7.
CVE-2019-3483 1Hp 1Arcsight Logger Nov 21, 2024 Mar 25, 2019 N/A· v4 6.5 MEDIUM· v3 6.8 MEDIUM· v2 Mitigates a potential information leakage issue in ArcSight Logger versions prior to 6.7.
CVE-2019-3482 1Hp 1Arcsight Logger Nov 21, 2024 Mar 25, 2019 N/A· v4 6.5 MEDIUM· v3 6.8 MEDIUM· v2 Mitigates a directory traversal issue in ArcSight Logger versions prior to 6.7.
CVE-2019-3481 1Hp 1Arcsight Logger Nov 21, 2024 Mar 25, 2019 N/A· v4 7.1 HIGH· v3 7.5 HIGH· v2 Mitigates a XML External Entity Parsing issue in ArcSight Logger versions prior to 6.7.
CVE-2019-3480 1Hp 1Arcsight Logger Nov 21, 2024 Mar 25, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Mitigates a stored/reflected XSS issue in ArcSight Logger versions prior to 6.7.
CVE-2019-3479 1Hp 1Arcsight Logger Nov 21, 2024 Mar 25, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Mitigates a potential remote code execution issue in ArcSight Logger versions prior to 6.7.
CVE-2015-6864 1Hp 1Arcsight Logger May 6, 2026 Jan 16, 2016 N/A· v4 6.3 MEDIUM· v3 6.5 MEDIUM· v2 HPE ArcSight Logger before 6.1P1 allows remote authenticated users to execute arbitrary code via unspecified input to the (1) Intellicus or (2) client-certificate upload component.
CVE-2015-6863 1Hp 1Arcsight Logger May 6, 2026 Jan 16, 2016 N/A· v4 7.3 HIGH· v3 7.5 HIGH· v2 HPE ArcSight Logger before 6.1P1 allows remote attackers to execute arbitrary code via unspecified input to the (1) Intellicus or (2) client-certificate upload component.
CVE-2015-5441 1Hp 2Archsight Management Center Arcsight Logger May 6, 2026 Nov 12, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Multiple cross-site scripting (XSS) vulnerabilities in HP ArcSight Management Center before 2.1 and ArcSight Logger before 6.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2015-6030 2Hp Microfocus 7Arcsight Command Center Arcsight Connector ApplianceArcsight Connectors+4 more May 6, 2026 Nov 4, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 HP ArcSight Logger 6.0.0.7307.1, ArcSight Command Center 6.8.0.1896.0, and ArcSight Connector Appliance 6.4.0.6881.3 use the root account to execute files owned by the arcsight user, which might allow local users to gain...Show more HP ArcSight Logger 6.0.0.7307.1, ArcSight Command Center 6.8.0.1896.0, and ArcSight Connector Appliance 6.4.0.6881.3 use the root account to execute files owned by the arcsight user, which might allow local users to gain privileges by leveraging arcsight account access.Show less
CVE-2015-6029 1Hp 1Arcsight Logger May 6, 2026 Nov 4, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 HP ArcSight Logger before 6.0 P2 does not limit attempts to authenticate to the SOAP interface, which makes it easier for remote attackers to obtain access via a brute-force approach.
CVE-2015-2136 1Hp 1Arcsight Logger May 6, 2026 Sep 16, 2015 N/A· v4 N/A· v3 4.0 MEDIUM· v2 HP ArcSight Logger before 6.0 P2 allows remote authenticated users to bypass the intended authorization policy via unspecified vectors.
CVE-2014-7884 1Hp 1Arcsight Logger May 6, 2026 Mar 14, 2015 N/A· v4 N/A· v3 9.0 HIGH· v2 Multiple unspecified vulnerabilities in HP ArcSight Logger before 6.0P1 have unknown impact and remote authenticated attack vectors.
CVE-2012-5199 1Hp 3Arcsight Connector Appliance Arcsight Connector Appliance FirmwareArcsight Logger Apr 29, 2026 Feb 16, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Unspecified vulnerability in HP ArcSight Connector Appliance 6.3 and earlier and ArcSight Logger 5.2 and earlier allows remote authenticated users to execute arbitrary code via unknown vectors.
CVE-2012-5198 1Hp 3Arcsight Connector Appliance Arcsight Connector Appliance FirmwareArcsight Logger Apr 29, 2026 Feb 16, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unspecified vulnerability in HP ArcSight Connector Appliance before 6.3 and ArcSight Logger 5.2 and earlier allows remote attackers to obtain sensitive information via unknown vectors.
CVE-2012-3286 1Hp 3Arcsight Connector Appliance Arcsight Connector Appliance FirmwareArcsight Logger Apr 29, 2026 Feb 16, 2013 N/A· v4 N/A· v3 6.5 MEDIUM· v2 Unspecified vulnerability in HP ArcSight Connector Appliance 6.3 and earlier and ArcSight Logger 5.2 and earlier allows remote authenticated users to obtain sensitive information, modify data, or cause a denial of servic...Show more Unspecified vulnerability in HP ArcSight Connector Appliance 6.3 and earlier and ArcSight Logger 5.2 and earlier allows remote authenticated users to obtain sensitive information, modify data, or cause a denial of service via unknown vectors.Show less