Arbitrary code execution vulnerability on Micro Focus ArcSight Logger product, affecting all version prior to 7.1.1. The vulnerability could be remotely exploited resulting in the execution of arbitrary code.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HMicrofocus Arcsight Logger
APPMicrofocus< 7.1.1
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCE
CWE
Powiązane podatności
CVE-2023-24470CRITICAL9.1ten sam produkt
Potential XML External Entity Injection in ArcSight Logger versions prior to 7.3.0.
CVE-2019-11657HIGH8.8ten sam produkt
Cross-Site Request Forgery vulnerability in all Micro Focus ArcSight Logger affecting all product versions bel...
CVE-2023-24469MEDIUM6.1ten sam produkt
Potential Cross-Site Scripting in ArcSight Logger versions prior to 7.3.0
CVE-2022-26330MEDIUM6.5ten sam produkt
Potential vulnerabilities have been identified in Micro Focus ArcSight Logger. The vulnerabilities could be re...
CVE-2022-26331MEDIUM6.1ten sam produkt
Potential vulnerabilities have been identified in Micro Focus ArcSight Logger. The vulnerabilities could be re...