Vulnerability CVE-2015-6030
Published: 2015-11-03   Modified: 2015-11-04

Description:
HP ArcSight Logger 6.0.0.7307.1, ArcSight Command Center 6.8.0.1896.0, and ArcSight Connector Appliance 6.4.0.6881.3 use the root account to execute files owned by the arcsight user, which might allow local users to gain privileges by leveraging arcsight account access.

Type:

CWE-264

 (Permissions, Privileges, and Access Controls)

CVSS2 => (AV:L/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.2/10
10/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Microfocus -> Arcsight enterprise security manager 
HP -> Arcsight command center 
HP -> Arcsight connector appliance 
HP -> Arcsight logger 
HP -> Arcsight connectors 
HP -> Arcsight enterprise security manager 
HP -> Arcsight express 
HP -> Arcsight management center 

 References:
http://www.kb.cert.org/vuls/id/842252
http://www.securitytracker.com/id/1034072
http://www.securitytracker.com/id/1034073
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04872416
Copyright 2024, cxsecurity.com

 

Back to Top