Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microfocus arcsight enterprise security manager vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-38127
Potential vulnerabilities have been identified in Micro Focus ArcSight Enterprise Security Manager, affecting versions 7.4.x and 7.5.x. The vulnerabilities could be remotely exploited resulting in Cross-Site Scripting (XSS).
Microfocus Arcsight Enterprise Security Manager 7.4
Microfocus Arcsight Enterprise Security Manager 7.5
4.3
CVSSv2
CVE-2021-38126
Potential vulnerabilities have been identified in Micro Focus ArcSight Enterprise Security Manager, affecting versions 7.4.x and 7.5.x. The vulnerabilities could be remotely exploited resulting in Cross-Site Scripting (XSS).
Microfocus Arcsight Enterprise Security Manager 7.4
Microfocus Arcsight Enterprise Security Manager 7.5
7.5
CVSSv2
CVE-2021-38124
Remote Code Execution vulnerability in Micro Focus ArcSight Enterprise Security Manager (ESM) product, affecting versions 7.0.2 up to and including 7.5. The vulnerability could be exploited resulting in remote code execution.
Microfocus Arcsight Enterprise Security Manager
4.3
CVSSv2
CVE-2020-9522
Cross Site Scripting (XSS) vulnerability in Micro Focus ArcSight Enterprise Security Manager (ESM) product, Affecting versions 7.0.x, 7.2 and 7.2.1 . The vulnerabilities could be remotely exploited resulting in Cross-Site Scripting (XSS) or information disclosure.
Microfocus Arcsight Enterprise Security Manager Express
4.3
CVSSv2
CVE-2016-1990
HPE ArcSight ESM 5.x prior to 5.6, 6.0, 6.5.x prior to 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express prior to 6.9.1, allows local users to gain privileges for command execution via unspecified vectors.
Microfocus Arcsight Enterprise Security Manager
Microfocus Arcsight Enterprise Security Manager 6.0
Microfocus Arcsight Enterprise Security Manager 6.5
Microfocus Arcsight Enterprise Security Manager 6.9
Microfocus Arcsight Enterprise Security Manager 6.8
6
CVSSv2
CVE-2016-1991
HPE ArcSight ESM 5.x prior to 5.6, 6.0, 6.5.x prior to 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express prior to 6.9.1, allows remote authenticated users to conduct unspecified "file download" attacks via unknown vectors.
Microfocus Arcsight Enterprise Security Manager 6.0
Microfocus Arcsight Enterprise Security Manager 6.8
Microfocus Arcsight Enterprise Security Manager
Microfocus Arcsight Enterprise Security Manager 6.5
Microfocus Arcsight Enterprise Security Manager 6.9
7.2
CVSSv2
CVE-2015-6030
HP ArcSight Logger 6.0.0.7307.1, ArcSight Command Center 6.8.0.1896.0, and ArcSight Connector Appliance 6.4.0.6881.3 use the root account to execute files owned by the arcsight user, which might allow local users to gain privileges by leveraging arcsight account access.
Hp Arcsight Connector Appliance
Hp Arcsight Logger 6.0.0.7307.1
Hp Arcsight Command Center 6.8.0.1896.0
Microfocus Arcsight Enterprise Security Manager
Hp Arcsight Express 4.0
Hp Arcsight Management Center
Hp Arcsight Connectors
10
CVSSv2
CVE-2014-7885
Multiple unspecified vulnerabilities in HP ArcSight Enterprise Security Manager (ESM) prior to 6.8c have unknown impact and remote attack vectors.
Microfocus Arcsight Enterprise Security Manager
4.3
CVSSv2
CVE-2013-4815
Cross-site scripting (XSS) vulnerability in the web interface in HP ArcSight Enterprise Security Manager (ESM) prior to 5.5 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Microfocus Arcsight Enterprise Security Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started