hp arcsight-management-center CVE-2018-6505 in HP and Micro Focus Products
Published on September 20, 2018

MFSBGN03824 rev.1 - ArcSight Management Center, Insufficient Access Control, Reflected Cross Site Scripting, Access Control vulnerability, Cross-Site Request Forgery (CSRF), Unauthenticated File Download, Directory Traversal Vulnerability

product logo product logo
A potential Unauthenticated File Download vulnerability has been identified in ArcSight Management Center (ArcMC) in all versions prior to 2.81. This vulnerability could be exploited to allow for Unauthenticated File Downloads.

NVD


Products Associated with CVE-2018-6505

stack.watch emails you whenever new vulnerabilities are published in HP Arcsight Management Center or Micro Focus Arcsight Management Center. Just hit a watch button to start following.

HP Arcsight Management Center
 
Micro Focus Arcsight Management Center
 

Affected Versions

Micro Focus ArcSight Management Center Version all versions prior to 2.81 is affected by CVE-2018-6505

Exploit Probability

EPSS
0.93%
Percentile
75.97%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.