CVE-2018-6500

MFSBGN03824 rev.1 - ArcSight Management Center, Insufficient Access Control, Reflected Cross Site Scripting, Access Control vulnerability, Cross-Site Request Forgery (CSRF), Unauthenticated File Download, Directory Traversal Vulnerability

CVSS 7.5 HIGHEPSS 4.0%

A potential Directory Traversal Security vulnerability has been identified in ArcSight Management Center (ArcMC) in all versions prior to 2.81. This vulnerability could be remotely exploited to allow Directory Traversal.

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Produtos afetados

Micro Focus · ArcSight Management Center

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03245142