CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

Prion•added 2018/09/20 7:29 p.m.•7 views

Improper access control

A potential Access Control vulnerability has been identified in ArcSight Management Center ArcMC in all versions prior to 2.81. This vulnerability could be exploited to allow for vulnerable Access Controls...

6.8CVSS6.4AI score0.00262EPSS

Exploits0References1Affected Software1

NVD•added 2018/09/20 7:29 p.m.•5 views

CVE-2018-6502

A potential Reflected Cross-Site Scripting XSS Security vulnerability has been identified in ArcSight Management Center ArcMC in all versions prior to 2.81. This vulnerability could be exploited to allow for Reflected Cross-site Scripting XSS...

6.5CVSS6AI score0.00288EPSS

Exploits0References1

CVE•added 2018/09/20 7:0 p.m.•37 views

CVE-2018-6505

ArcSight Management Center (ArcMC) prior to version 2.81 is affected by an Unauthenticated File Download vulnerability (CVE-2018-6505). The CVE entry and multiple connected sources describe an unauthenticated mechanism that could allow file downloads from ArcMC. The NVD metrics list a CVSSv3 base...

7.5CVSS7.4AI score0.00886EPSS

Exploits0References1Affected Software1

CVE•added 2018/09/20 7:0 p.m.•50 views

CVE-2018-6502

ArcSight Management Center (ArcMC) is affected by a Reflected Cross-Site Scripting vulnerability in all versions prior to 2.81. The issue, as described in connected CNVD/NVD entries, is a reflected XSS and the advisory suggests upgrading to version 2.81 or later to remediate. Exploit specifics an...

6.5CVSS5.9AI score0.00288EPSS

Exploits0References1Affected Software1

CVE•added 2018/09/20 7:0 p.m.•37 views

CVE-2018-6504

ArcSight Management Center (ArcMC) is affected by a CSRF vulnerability in all versions prior to 2.81. The CVE-2018-6504 entry is supported by multiple connected sources (CNVD; CVE/CVELIST records) confirming CSRF, with no explicit exploit details or remediation steps provided in the supplied docu...

8.8CVSS8.8AI score0.00106EPSS

Exploits0References1Affected Software1

CVE•added 2018/09/20 7:0 p.m.•35 views

CVE-2018-6503

Technical details for CVE-2018-6503 are not publicly available in the provided connected documents. Monitor for updates from official sources; current documents only indicate a generic access-control vulnerability in ArcSight Management Center prior to 2.81.

6.8CVSS6.3AI score0.00262EPSS

Exploits0References1Affected Software1

NVD•added 2018/09/20 4:29 p.m.•8 views

CVE-2018-6500

A potential Directory Traversal Security vulnerability has been identified in ArcSight Management Center ArcMC in all versions prior to 2.81. This vulnerability could be remotely exploited to allow Directory Traversal...

7.5CVSS7.4AI score0.01422EPSS

Exploits0References1

CVE•added 2018/09/20 4:0 p.m.•41 views

CVE-2018-6501

This CVE-2018-6501 affects ArcSight Management Center (ArcMC) prior to version 2.81, with a vulnerability described as Insufficient Access Controls. The connected records confirm the affected product and version range, and that the impact is uncontrolled access due to access-control shortcomings....

6.5CVSS6.4AI score0.0026EPSS

Exploits0References1Affected Software1

Cvelist•added 2018/09/20 4:0 p.m.•12 views

CVE-2018-6500 MFSBGN03824 rev.1 - ArcSight Management Center, Insufficient Access Control, Reflected Cross Site Scripting, Access Control vulnerability, Cross-Site Request Forgery (CSRF), Unauthenticated File Download, Directory Traversal Vulnerability

7.5CVSS7.4AI score0.01422EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by