CVE-2024-2834 OpenText ArcSight Management Center and ArcSight Platform Stored XSS

🗓️ 08 Apr 2024 12:22:49Reported by OpenTextType

OpenText ArcSight XSS vulnerability

Reporter	Title	Published	Views	Family All 7
CNNVD	Micro Focus ArcSight Management Center 安全漏洞	8 Apr 202400:00	–	cnnvd
CVE	CVE-2024-2834	8 Apr 202412:22	–	cve
EUVD	EUVD-2024-27778	3 Oct 202520:07	–	euvd
NVD	CVE-2024-2834	8 Apr 202413:15	–	nvd
Positive Technologies	PT-2024-22397 · Opentext · Arcsight Platform +1	8 Apr 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-2834	7 Jan 202609:09	–	redhatcve
Vulnrichment	CVE-2024-2834 OpenText ArcSight Management Center and ArcSight Platform Stored XSS	8 Apr 202412:22	–	vulnrichment

[
  {
    "defaultStatus": "affected",
    "product": "ArcSight Management Center",
    "vendor": "OpenText",
    "versions": [
      {
        "lessThan": "3.2.2 P1",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "3.2.3 P1",
        "status": "affected",
        "version": "3.2.3",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "ArcSight Platform",
    "vendor": "OpenText",
    "versions": [
      {
        "lessThan": "23.3.2",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      },
      {
        "lessThan": "24.1.2",
        "status": "affected",
        "version": "24.1.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
portal	www.portal.microfocus.com/s/article/KM000028275

08 Apr 2024 12:22Current

7.1High risk

Vulners AI Score7.1

CVSS 3.18.7

EPSS0.00156

CWE-79