RSS   Vulnerabilities for
'Arcsight enterprise security manager'
   RSS

2022-01-14
 
CVE-2021-38126

CWE-79
 

 
Potential vulnerabilities have been identified in Micro Focus ArcSight Enterprise Security Manager, affecting versions 7.4.x and 7.5.x. The vulnerabilities could be remotely exploited resulting in Cross-Site Scripting (XSS).

 
 
CVE-2021-38127

CWE-79
 

 
Potential vulnerabilities have been identified in Micro Focus ArcSight Enterprise Security Manager, affecting versions 7.4.x and 7.5.x. The vulnerabilities could be remotely exploited resulting in Cross-Site Scripting (XSS).

 
2021-09-28
 
CVE-2021-38124

CWE-77
 

 
Remote Code Execution vulnerability in Micro Focus ArcSight Enterprise Security Manager (ESM) product, affecting versions 7.0.2 through 7.5. The vulnerability could be exploited resulting in remote code execution.

 
2016-03-16
 
CVE-2016-1991

CWE-noinfo
 

 
HPE ArcSight ESM 5.x before 5.6, 6.0, 6.5.x before 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express before 6.9.1, allows remote authenticated users to conduct unspecified "file download" attacks via unknown vectors.

 
 
CVE-2016-1990

CWE-264
 

 
HPE ArcSight ESM 5.x before 5.6, 6.0, 6.5.x before 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express before 6.9.1, allows local users to gain privileges for command execution via unspecified vectors.

 
2015-11-03
 
CVE-2015-6030

CWE-264
 

 
HP ArcSight Logger 6.0.0.7307.1, ArcSight Command Center 6.8.0.1896.0, and ArcSight Connector Appliance 6.4.0.6881.3 use the root account to execute files owned by the arcsight user, which might allow local users to gain privileges by leveraging arcsight account access.

 
2015-03-13
 
CVE-2014-7885

CWE-noinfo
 

 
Multiple unspecified vulnerabilities in HP ArcSight Enterprise Security Manager (ESM) before 6.8c have unknown impact and remote attack vectors.

 
2013-09-20
 
CVE-2013-4815

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in the web interface in HP ArcSight Enterprise Security Manager (ESM) before 5.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

 

 >>> Vendor: Microfocus 68 Products
Directory server
Enterprise server
Netware
Client
Cobol
Edirectory
Rumba
Open enterprise server
Identity manager
Access manager
Service manager
Visibroker
Operations agent
Project and portfolio management center
Reflection for the web
Data protector
Network automation
Connected backup
Fortify software security center
Arcsight logger
Arcsight enterprise security manager
Verastream host integrator
Unified functional testing
Operations manager i
Service virtualization
Network virtualization
FILR
Content manager
Arcsight management center
Rumba ftp
Host access management and security server
Reflection security gateway
Reflection zfe
VIBE
Enterprise server monitor and control
Enterprise developer
Arcsight enterprise security manager express
Application performance management
Ucmdb configuration manager
Bi-directional driver
Project and portfolio management
Fortify audit workbench
Universal cmdb foundation software
Cms server
Universal cmdb
Universal cmdb browser
Data center automation
Hybrid cloud management
Network operations management
Operations bridge
Service management automation
Real user monitoring
Netiq edirectory
Solutions business manager
Netiq self service password reset
Verastream host integrato
Service manager chat server
Service manager chat service
Acutoweb
Service manager automation
Secure messaging gateway
Operation bridge reporter
IDOL
Operations bridge manager
Application automation tools
Netiq advanced authentication
Voltage securemail
Netiq access manager


Copyright 2024, cxsecurity.com

 

Back to Top