exploitDog

GHSA-g9xc-g4c8-7qx2

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

An insufficient access control vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows an unauthorized user to download log files.

An insufficient access control vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows an unauthorized user to download log files.

Ссылки

EPSS

Процентиль: 57%

0.00349

Низкий

6.5 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2017-13987

CVSS3: 6.5

nvd

больше 8 лет назад

An insufficient access control vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows an unauthorized user to download log files.

EPSS

Процентиль: 57%

0.00349

Низкий

6.5 Medium

CVSS3

CVE ID