hp arcsight-management-center CVE-2018-6502 in HP and Micro Focus Products
Published on September 20, 2018

MFSBGN03824 rev.1 - ArcSight Management Center, Insufficient Access Control, Reflected Cross Site Scripting, Access Control vulnerability, Cross-Site Request Forgery (CSRF), Unauthenticated File Download, Directory Traversal Vulnerability

product logo product logo
A potential Reflected Cross-Site Scripting (XSS) Security vulnerability has been identified in ArcSight Management Center (ArcMC) in all versions prior to 2.81. This vulnerability could be exploited to allow for Reflected Cross-site Scripting (XSS).

NVD


Products Associated with CVE-2018-6502

stack.watch emails you whenever new vulnerabilities are published in HP Arcsight Management Center or Micro Focus Arcsight Management Center. Just hit a watch button to start following.

HP Arcsight Management Center
 
Micro Focus Arcsight Management Center
 

Affected Versions

Micro Focus ArcSight Management Center Version all versions prior to 2.81 is affected by CVE-2018-6502

Exploit Probability

EPSS
0.29%
Percentile
52.03%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.