Arbitrary code execution vulnerability on Micro Focus ArcSight Logger product, affecting all version prior to 7.1.1. The vulnerability could be remotely exploited resulting in the execution of arbitrary code.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HMicrofocus Arcsight Logger
APPMicrofocus< 7.1.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
Related vulnerabilities
CVE-2023-24470CRITICAL9.1ten sam produkt
Potential XML External Entity Injection in ArcSight Logger versions prior to 7.3.0.
CVE-2019-11657HIGH8.8ten sam produkt
Cross-Site Request Forgery vulnerability in all Micro Focus ArcSight Logger affecting all product versions bel...
CVE-2023-24469MEDIUM6.1ten sam produkt
Potential Cross-Site Scripting in ArcSight Logger versions prior to 7.3.0
CVE-2022-26330MEDIUM6.5ten sam produkt
Potential vulnerabilities have been identified in Micro Focus ArcSight Logger. The vulnerabilities could be re...
CVE-2022-26331MEDIUM6.1ten sam produkt
Potential vulnerabilities have been identified in Micro Focus ArcSight Logger. The vulnerabilities could be re...