Lucene search

[email protected]CVE-2024-0967

HistoryMar 01, 2024 - 3:15 p.m.

CVE-2024-0967

2024-03-0115:15:08

[email protected]

web.nvd.nist.gov

vulnerability

opentext

micro focus

arcsight

esm

remote exploitation

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

4.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

A potential vulnerability has been identified in OpenText / Micro Focus ArcSight Enterprise Security Manager (ESM). The vulnerability could be remotely exploited.

CNA Affected

[
  {
    "defaultStatus": "unknown",
    "product": "ArcSight Enterprise Security Manager",
    "vendor": "OpenText",
    "versions": [
      {
        "lessThan": "24.1 (7.7.0)",
        "status": "affected",
        "version": "0",
        "versionType": "release"
      }
    ]
  }
]

References

portal.microfocus.com/s/article/KM000027060

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

4.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for CVE-2024-0967

prion1 nvd1 cvelist1