Lucene search
OpenTextCVE-2020-25835HistoryDec 09, 2023 - 2:15 a.m.
CVE-2020-25835
2023-12-0902:15:06
CWE-79
OpenText
web.nvd.nist.gov
12
vulnerability
remote exploit
micro focus
arcsight management center
xss
cve-2020-25835
CVSS3
5.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
AI Score
5.3
Confidence
High
EPSS
0
Percentile
14.0%
A potential vulnerability has been identified in Micro Focus ArcSight Management Center. The vulnerability could be remotely exploited resulting in stored Cross-Site Scripting (XSS).
Affected configurations
Node
microfocusarcsight_management_centerRange2.9.0–2.9.6
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microfocus | arcsight_management_center | * | cpe:2.3:a:microfocus:arcsight_management_center:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "affected",
"product": "ArcSight Management Center",
"vendor": "Micro Focus",
"versions": [
{
"lessThan": "2.9.6",
"status": "affected",
"version": "0",
"versionType": "release"
}
]
}
]Related
prion
prion
Cross site scripting
2023-12-09 02:15:00
nvd
nvd
CVE-2020-25835
2023-12-09 02:15:06
cvelist
cvelist
CVE-2020-25835 Micro Focus ArcSight Management Center Remote Vulnerability
2023-12-09 01:52:11
CVSS3
5.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
AI Score
5.3
Confidence
High
EPSS
0
Percentile
14.0%
Related for CVE-2020-25835