HPE ArcSight ESM 5.x before 5.6, 6.0, 6.5.x before 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express before 6.9.1, allows remote authenticated users to conduct unspecified "file. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity.
Information Disclosure
Arcsight Enterprise Security Manager
NVD
CVSS 3.0
8.0
EPSS
0.5%
HPE ArcSight ESM 5.x before 5.6, 6.0, 6.5.x before 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express before 6.9.1, allows local users to gain privileges for command execution via. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.
Privilege Escalation
Arcsight Enterprise Security Manager
NVD
CVSS 3.0
7.8
EPSS
0.1%