Skip to main content

Arcsight Smartconnectors

2 CVEs product

Monthly

CVE-2015-2903 MEDIUM This Month

The CWSAPI SOAP service in HP ArcSight SmartConnectors before 7.1.6 has a hardcoded password, which makes it easier for remote attackers to obtain administrative access by leveraging knowledge of. Rated medium severity (CVSS 6.9). No vendor patch available.

HP Information Disclosure Arcsight Smartconnectors
NVD
CVSS 2.0
6.9
EPSS
0.5%
CVE-2015-2902 MEDIUM This Month

HP ArcSight SmartConnectors before 7.1.6 do not verify X.509 certificates from Logger devices, which allows man-in-the-middle attackers to spoof devices and obtain sensitive information via a crafted. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

HP Information Disclosure Arcsight Smartconnectors
NVD
CVSS 2.0
6.8
EPSS
0.4%
EPSS 1% CVSS 6.9
MEDIUM This Month

The CWSAPI SOAP service in HP ArcSight SmartConnectors before 7.1.6 has a hardcoded password, which makes it easier for remote attackers to obtain administrative access by leveraging knowledge of. Rated medium severity (CVSS 6.9). No vendor patch available.

HP Information Disclosure Arcsight Smartconnectors
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

HP ArcSight SmartConnectors before 7.1.6 do not verify X.509 certificates from Logger devices, which allows man-in-the-middle attackers to spoof devices and obtain sensitive information via a crafted. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

HP Information Disclosure Arcsight Smartconnectors
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy