Lucene search
K

29 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-2246

Malware in sbrugna...

4CVSS6.3AI score0.0184EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-5121

Malware in sbrugna...

5CVSS6.3AI score0.03792EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-5397

Malware in sbrugna...

4.3CVSS6.4AI score0.01942EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2012-2938

Malware in sbrugna...

4.3CVSS6.3AI score0.02631EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/02/18 12:0 a.m.51 views

HP ArcSight Logger < 6.1P1 Multiple Vulnerabilities

The version of HP ArcSight Logger installed on the remote host is prior to 6.1P1. It is, therefore, affected by multiple vulnerabilities in the Intellicus and client-certificate upload components due to improper validation of user-supplied input. A remote attacker can exploit these to bypass...

7.5CVSS7.2AI score0.02264EPSS
Exploits0References3
Cvelist
Cvelist
added 2015/11/12 2:0 a.m.20 views

CVE-2015-5441

Multiple cross-site scripting XSS vulnerabilities in HP ArcSight Management Center before 2.1 and ArcSight Logger before 6.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.8AI score0.01942EPSS
Exploits0References4
NVD
NVD
added 2015/11/04 3:59 a.m.21 views

CVE-2015-6029

HP ArcSight Logger before 6.0 P2 does not limit attempts to authenticate to the SOAP interface, which makes it easier for remote attackers to obtain access via a brute-force approach...

5CVSS6.4AI score0.04439EPSS
Exploits0References3
Prion
Prion
added 2015/11/04 3:59 a.m.12 views

Command injection

HP ArcSight Logger 6.0.0.7307.1, ArcSight Command Center 6.8.0.1896.0, and ArcSight Connector Appliance 6.4.0.6881.3 use the root account to execute files owned by the arcsight user, which might allow local users to gain privileges by leveraging arcsight account access...

7.2CVSS7.5AI score0.00608EPSS
Exploits0References4Affected Software7
Prion
Prion
added 2015/11/04 3:59 a.m.14 views

Design/Logic Flaw

HP ArcSight Logger before 6.0 P2 does not limit attempts to authenticate to the SOAP interface, which makes it easier for remote attackers to obtain access via a brute-force approach...

5CVSS7AI score0.04439EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2015/11/04 2:0 a.m.23 views

CVE-2015-6029

HP ArcSight Logger before 6.0 P2 does not limit attempts to authenticate to the SOAP interface, which makes it easier for remote attackers to obtain access via a brute-force approach...

6.4AI score0.04439EPSS
Exploits0References3
securityvulns
securityvulns
added 2015/10/26 12:0 a.m.96 views

HP ArcSight Logger security vulnerabilities

Authentication bypass, information disclosure...

5CVSS1AI score0.04439EPSS
Exploits0References2Affected Software1
CERT
CERT
added 2015/10/19 12:0 a.m.39 views

HP ArcSight Logger contains multiple vulnerabilities

Overview HP ArcSight Logger contains multiple vulnerabilities, allowing authentication bypass and privilege escalation in certain scenarios. Description CWE-285: Improper Authorization- CVE-2015-2136A remote authenticated user without Logger Search permissions may be able to bypass authorization...

7.2CVSS7.6AI score0.04439EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/10/16 12:0 a.m.22 views

HP ArcSight Logger < 6.1 Management Center XSS

The remote host has a version of HP ArcSight logger installed that is prior to 6.1. It is, therefore, affected by a reflected cross-site scripting vulnerability in the Management Center due to improper validation of user-supplied input. A remote attacker can exploit this, via a specially crafted...

4.3CVSS6.1AI score0.01942EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/09/17 12:0 a.m.25 views

HP ArcSight Logger < 6.0 P2 Multiple Vulnerabilities

According to its self-reported version number, the version of HP ArcSight Logger installed on the remote host is prior to 6.0 P2. It is, therefore, affected by multiple vulnerabilities : - An authorization bypass vulnerability exists that allows an authenticated, remote attacker to bypass...

7.2CVSS5.8AI score0.04439EPSS
Exploits0References6
Prion
Prion
added 2015/09/16 2:59 p.m.16 views

Authorization

HP ArcSight Logger before 6.0 P2 allows remote authenticated users to bypass the intended authorization policy via unspecified vectors...

4CVSS6.6AI score0.0184EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2015/09/16 2:59 p.m.15 views

CVE-2015-2136

HP ArcSight Logger before 6.0 P2 allows remote authenticated users to bypass the intended authorization policy via unspecified vectors...

4CVSS6.1AI score0.0184EPSS
Exploits0References1
CVE
CVE
added 2015/09/16 2:0 p.m.52 views

CVE-2015-2136

HP ArcSight Logger prior to version 6.0 P2 contains CVE-2015-2136: remote authenticated users can bypass the intended authorization policy (noted via the SOAP interface) and perform unauthorized actions. Affected product/version: HP ArcSight Logger before 6.0 P2. Root cause indicated as improper ...

4CVSS6.2AI score0.0184EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2015/09/16 2:0 p.m.25 views

CVE-2015-2136

HP ArcSight Logger before 6.0 P2 allows remote authenticated users to bypass the intended authorization policy via unspecified vectors...

6.1AI score0.0184EPSS
Exploits0References1
CNVD
CNVD
added 2015/09/15 12:0 a.m.4 views

HP ArcSight Logger Remote Authorized Access Vulnerability

HP ArcSight Logger is a log management software tool. A remote authorized access vulnerability exists in HP ArcSight Logger, which can be exploited by an attacker to bypass certain authorization restrictions and perform unauthorized operations...

4CVSS7AI score0.0184EPSS
Exploits0References1
securityvulns
securityvulns
added 2015/09/15 12:0 a.m.93 views

[security bulletin] HPSBMU03392 rev.2 - HP ArcSight Logger, Remote Authorization Bypass

Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04762372 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04762372 Version: 2 HPSBMU03392 rev.2 - HP ArcSight Logger, Remote Authorization...

4CVSS0.5AI score0.0184EPSS
Exploits0
Rows per page
Query Builder