17 matches found
EUVD-2017-5861
Malware in sbrugna...
EUVD-2017-5860
Malware in sbrugna...
EUVD-2017-5859
Malware in sbrugna...
HP ArcSight ESM 6.x < 6.9.1.2377.4 / 6.11.0.2385.1 Multiple Vulnerabilities
According to its self-reported version number, the version of HP ArcSight Enterprise Security Manager ESM installed on the remote host is 6.x prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. It is, therefore, affected by multiple vulnerabilities. See advisory for details. C Tenable Network Security, In...
CVE-2017-14356
An SQL Injection vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability could be exploited remotely to allow SQL injection...
CVE-2017-14357
A Reflected and Stored Cross-Site Scripting XSS vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability could be exploited remotely to allow Reflected and Stored Cross-Site Scripting XSS...
Cross site scripting
A Reflected and Stored Cross-Site Scripting XSS vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability could be exploited remotely to allow Reflected and Stored Cross-Site Scripting XSS...
CVE-2017-14358
A URL redirection to untrusted site vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability could be exploited remotely to allow URL redirection to untrusted site...
CVE-2017-14357
A Reflected and Stored Cross-Site Scripting XSS vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability could be exploited remotely to allow Reflected and Stored Cross-Site Scripting XSS...
CVE-2017-14356
An SQL Injection vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability could be exploited remotely to allow SQL injection...
CVE-2017-14358
A URL redirection to untrusted site vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability could be exploited remotely to allow URL redirection to untrusted site...
CVE-2017-14357
HP ArcSight ESM and HP ArcSight ESM Express are affected by CVE-2017-14357: a Reflected and Stored Cross-Site Scripting (XSS) vulnerability in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. The issue could be exploited remotely to inject web scripts or HTML, enabling client-side scrip...
CVE-2017-14356
HP ArcSight ESM and ArcSight ESM Express (6.x) are affected by an SQL Injection vulnerability in versions before 6.9.1c Patch 4 or 6.11.0 Patch 1. A remote attacker could exploit this to inject SQL commands. Affected products include HP ArcSight ESM and ArcSight ESM Express. Remediation is to upg...
HP ArcSight ESM < 6.8c Information Disclosure
According to its self-reported version number, the version of HP ArcSight Enterprise Security Manager ESM installed on the remote host is prior to 6.8.0.1896 6.8c. It is, therefore, affected by an unspecified flaw that allows an authenticated, remote attacker to disclose sensitive information. C...
HP ArcSight ESM < 6.5c SP1 P1 / 6.8c Multiple Vulnerabilities
According to its self-reported version number, the version of HP ArcSight Enterprise Security Manager ESM installed on the remote host is prior to 6.5.1.1845.0 6.5c SP1 P1 or 6.8.0.1896 6.8c. It is, therefore, affected by multiple vulnerabilities : - A cross-site scripting XSS vulnerability exist...
CVE-2014-7885
Multiple unspecified vulnerabilities in HP ArcSight Enterprise Security Manager ESM before 6.8c have unknown impact and remote attack vectors...
CVE-2013-4815
Cross-site scripting XSS vulnerability in the web interface in HP ArcSight Enterprise Security Manager ESM before 5.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...