2 matches found
CVE-2017-14357
A Reflected and Stored Cross-Site Scripting XSS vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability could be exploited remotely to allow Reflected and Stored Cross-Site Scripting XSS...
CVE-2017-14357
HP ArcSight ESM and HP ArcSight ESM Express are affected by CVE-2017-14357: a Reflected and Stored Cross-Site Scripting (XSS) vulnerability in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. The issue could be exploited remotely to inject web scripts or HTML, enabling client-side scrip...