Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2015-2990

Malware in sbrugna...

6.8CVSS6.4AI score0.00417EPSS
Exploits0References4
NVD
NVDadded 2015/11/04 3:59 a.m.10 views

CVE-2015-2903

The CWSAPI SOAP service in HP ArcSight SmartConnectors before 7.1.6 has a hardcoded password, which makes it easier for remote attackers to obtain administrative access by leveraging knowledge of this password...

6.9CVSS6.6AI score0.00517EPSS
Exploits0References3
Prion
Prionadded 2015/11/04 3:59 a.m.9 views

Information disclosure

HP ArcSight SmartConnectors before 7.1.6 do not verify X.509 certificates from Logger devices, which allows man-in-the-middle attackers to spoof devices and obtain sensitive information via a crafted certificate...

6.8CVSS6.5AI score0.00417EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2015/11/04 3:59 a.m.11 views

CVE-2015-2902

HP ArcSight SmartConnectors before 7.1.6 do not verify X.509 certificates from Logger devices, which allows man-in-the-middle attackers to spoof devices and obtain sensitive information via a crafted certificate...

6.8CVSS6AI score0.00417EPSS
Exploits0References3
Prion
Prionadded 2015/11/04 3:59 a.m.7 views

Hardcoded credentials

The CWSAPI SOAP service in HP ArcSight SmartConnectors before 7.1.6 has a hardcoded password, which makes it easier for remote attackers to obtain administrative access by leveraging knowledge of this password...

6.9CVSS7.1AI score0.00517EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2015/11/04 2:0 a.m.35 views

CVE-2015-2902

HP ArcSight SmartConnectors before version 7.1.6 fail to verify X.509 certificates from Logger devices, enabling a man-in-the-middle attacker to spoof devices and read SSL-protected log traffic via a crafted certificate. This vulnerability affects ArcSight SmartConnectors prior to 7.1.6 and has a...

6.8CVSS6.1AI score0.00417EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2015/11/04 2:0 a.m.14 views

CVE-2015-2903

The CWSAPI SOAP service in HP ArcSight SmartConnectors before 7.1.6 has a hardcoded password, which makes it easier for remote attackers to obtain administrative access by leveraging knowledge of this password...

6.6AI score0.00517EPSS
Exploits0References3
Cvelist
Cvelistadded 2015/11/04 2:0 a.m.16 views

CVE-2015-2902

HP ArcSight SmartConnectors before 7.1.6 do not verify X.509 certificates from Logger devices, which allows man-in-the-middle attackers to spoof devices and obtain sensitive information via a crafted certificate...

6AI score0.00417EPSS
Exploits0References3
CVE
CVEadded 2015/11/04 2:0 a.m.37 views

CVE-2015-2903

The CVE-2015-2903 issue affects HP ArcSight SmartConnectors, specifically the CWSAPI SOAP service, prior to version 7.1.6. The root cause is a hardcoded password used by the CWSAPI SOAP service, which can allow a remote attacker to obtain administrative access if the password is known. Impact des...

6.9CVSS6.8AI score0.00517EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder