Lucene search
HistorySep 16, 2015 - 2:59 p.m.
CVE-2015-2136
cve-2015-2136
nvd
hp arcsight logger
authorization policy
security vulnerability
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
6.2 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
41.1%
HP ArcSight Logger before 6.0 P2 allows remote authenticated users to bypass the intended authorization policy via unspecified vectors.
Affected configurations
Node
hparcsight_loggerRange≤6.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| hp:arcsight_logger | hp arcsight logger | le | 6.0 |
Related
nvd
nvd
CVE-2015-2136
2015-09-16 14:59:00
prion
prion
Authorization
2015-09-16 14:59:00
cvelist
cvelist
CVE-2015-2136
2015-09-16 14:00:00
securityvulns
securityvulns
[security bulletin] HPSBMU03392 rev.2 - HP ArcSight Logger, Remote Authorization Bypass
2015-09-15 00:00:00
HP ArcSight Logger security vulnerabilities
2015-10-26 00:00:00
nessus
nessus
HP ArcSight Logger < 6.0 P2 Multiple Vulnerabilities
2015-09-17 00:00:00
cert
cert
HP ArcSight Logger contains multiple vulnerabilities
2015-10-19 00:00:00
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
6.2 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
41.1%
Related for CVE-2015-2136