HPE ArcSight ESM and ArcSight ESM Express SQL Injection Vulnerability

HPE ArcSight ESM Enterprise Security Manager and ESM Express are both enterprise security management software with event correlation and security analysis capabilities from Hewlett Packard Enterprise HPE. The software collects, correlates and reports on enterprise-wide security events in real tim...

Cross site scripting

A Reflected and Stored Cross-Site Scripting XSS vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability could be exploited remotely to allow Reflected and Stored Cross-Site Scripting XSS...

CVE-2017-14357

A Reflected and Stored Cross-Site Scripting XSS vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability could be exploited remotely to allow Reflected and Stored Cross-Site Scripting XSS...

CVE-2017-14358

CVE-2017-14358 affects HP ArcSight ESM and HP ArcSight ESM Express (HP ArcSight ESM 6.x) prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. The issue is a URL redirection vulnerability that could be exploited remotely to lead users to an untrusted site. Connected documents confirm the affected products a...

CVE-2017-14358

A URL redirection to untrusted site vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability could be exploited remotely to allow URL redirection to untrusted site...

Information disclosure

An information leakage vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows disclosure of Apache Tomcat application server version...

CVE-2017-13987

Summary: CVE-2017-13987 concerns HP ArcSight ESM/ESM Express. The vulnerability is an insufficient access control that allows an unauthorized user to download log files. This affects any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. Affected product/limitation: ArcSight ESM and ArcSight ...

CVE-2017-13988

Affected product: ArcSight ESM and ArcSight ESM Express. Vulnerable versions: any 6.x prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. Root cause / impact: improper access control lets unauthorized users alter the maximum size of storage groups and enable/disable the follow schedule function. Exploitab...

CVE-2017-13990

Summary: CVE-2017-13990 describes an information-disclosure vulnerability in HP ArcSight ESM/ESM Express (ArcSight) where any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1 can disclose the Apache Tomcat application server version. Affected products/versions: ArcSight ESM and ArcSight ESM ...

CVE-2017-13989

CVE-2017-13989 describes an improper access control vulnerability in HP ArcSight ESM and ArcSight ESM Express. Affected products are ArcSight ESM/Express versions prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. The issue allows unauthorized users to retrieve or modify storage information due to inadeq...

CVE-2017-13986

CVE-2017-13986 is a reflected Cross-Site Scripting (XSS) vulnerability in ArcSight ESM and ArcSight ESM Express . Affected are any 6.x versions prior to 6.9.1c Patch 4 or 6.11.0 Patch 1 . The issue arises from handling a crafted URL, enabling unintended information exposure. According to NVD, the...

CVE-2017-13987

An insufficient access control vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows an unauthorized user to download log files...

CVE-2017-13991

An information leakage vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows disclosure of product license features...

CVE-2016-1992

HPE ArcSight ESM before 6.8c, and ArcSight ESM Express before 6.9.1, allows remote authenticated users to obtain sensitive information via unspecified vectors...

CVE-2016-1991

HPE ArcSight ESM 5.x before 5.6, 6.0, 6.5.x before 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express before 6.9.1, allows remote authenticated users to conduct unspecified "file download" attacks via unknown vectors...