Micro Focus Arcsight Management Center vulnerabilities
6 known vulnerabilities affecting micro_focus/arcsight_management_center.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2020-25835MEDIUMCVSS 5.4fixed in 2.9.62023-12-09
CVE-2020-25835 [MEDIUM] CWE-79 CVE-2020-25835: A potential vulnerability has been identified in Micro Focus ArcSight Management Center. The vulnera
A potential vulnerability has been identified in Micro Focus ArcSight Management Center. The vulnerability could be remotely exploited resulting in stored Cross-Site Scripting (XSS).
cvelistv5nvd
CVE-2018-6500HIGHCVSS 7.5vall versions prior to 2.812018-09-20
CVE-2018-6500 [HIGH] CWE-22 CVE-2018-6500: A potential Directory Traversal Security vulnerability has been identified in ArcSight Management Ce
A potential Directory Traversal Security vulnerability has been identified in ArcSight Management Center (ArcMC) in all versions prior to 2.81. This vulnerability could be remotely exploited to allow Directory Traversal.
cvelistv5nvd
CVE-2018-6505HIGHCVSS 7.5vall versions prior to 2.812018-09-20
CVE-2018-6505 [HIGH] CVE-2018-6505: A potential Unauthenticated File Download vulnerability has been identified in ArcSight Management C
A potential Unauthenticated File Download vulnerability has been identified in ArcSight Management Center (ArcMC) in all versions prior to 2.81. This vulnerability could be exploited to allow for Unauthenticated File Downloads.
cvelistv5nvd
CVE-2018-6504HIGHCVSS 8.8vall versions prior to 2.812018-09-20
CVE-2018-6504 [HIGH] CWE-352 CVE-2018-6504: A potential Cross-Site Request Forgery (CSRF) vulnerability has been identified in ArcSight Manageme
A potential Cross-Site Request Forgery (CSRF) vulnerability has been identified in ArcSight Management Center (ArcMC) in all versions prior to 2.81. This vulnerability could be exploited to allow for Cross-Site Request Forgery (CSRF).
cvelistv5nvd
CVE-2018-6503MEDIUMCVSS 6.5vall versions prior to 2.812018-09-20
CVE-2018-6503 [MEDIUM] CVE-2018-6503: A potential Access Control vulnerability has been identified in ArcSight Management Center (ArcMC) i
A potential Access Control vulnerability has been identified in ArcSight Management Center (ArcMC) in all versions prior to 2.81. This vulnerability could be exploited to allow for vulnerable Access Controls.
cvelistv5nvd
CVE-2018-6502MEDIUMCVSS 6.1vall versions prior to 2.812018-09-20
CVE-2018-6502 [MEDIUM] CWE-79 CVE-2018-6502: A potential Reflected Cross-Site Scripting (XSS) Security vulnerability has been identified in ArcSi
A potential Reflected Cross-Site Scripting (XSS) Security vulnerability has been identified in ArcSight Management Center (ArcMC) in all versions prior to 2.81. This vulnerability could be exploited to allow for Reflected Cross-site Scripting (XSS).
cvelistv5nvd