Arcsight enterprise security manager
This hub aggregates every CVE we track for Arcsight enterprise security manager, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.
20
CVEs tracked
3
Critical
6
High
0
In CISA KEV
Severity distribution
MEDIUM11HIGH6CRITICAL3
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Arcsight enterprise security manager.
- CVE-2024-2835OpenText ArcSight Enterprise Security Manager and ArcSight Platform Stored XSS8.7
- CVE-2024-3482OpenText ArcSight Enterprise Security Manager and ArcSight Platform Stored XSS8.7
- CVE-2024-0967OpenText / Micro Focus ArcSight Enterprise Security Manager Remote Vulnerability4.3
- CVE-2021-38127Potential vulnerabilities have been identified in Micro Focus ArcSight Enterprise Security Manager, affecting versions 7.4.x and 7.5.x. The vulnerabilities could be remotely exploited resulting in ...6.1
- CVE-2021-38126Potential vulnerabilities have been identified in Micro Focus ArcSight Enterprise Security Manager, affecting versions 7.4.x and 7.5.x. The vulnerabilities could be remotely exploited resulting in ...6.1
- CVE-2021-38124Remote Code Execution vulnerability in Micro Focus ArcSight Enterprise Security Manager (ESM) product, affecting versions 7.0.2 through 7.5. The vulnerability could be exploited resulting in remote...9.8
- CVE-2017-14358A URL redirection to untrusted site vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability could be exploited...6.1
- CVE-2017-14357A Reflected and Stored Cross-Site Scripting (XSS) vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability coul...6.1
- CVE-2017-14356An SQL Injection vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability could be exploited remotely to allow ...9.8
- CVE-2017-13990An information leakage vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows disclosure of Apache Tomcat application server version.5.3
- CVE-2017-13988An improper access control vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows unauthorized users to alter the maximum size of ...6.5
- CVE-2017-13991An information leakage vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows disclosure of product license features.5.3
- CVE-2017-13986A reflected Cross-Site Scripting(XSS) vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows for unintended information when a spe...6.1
- CVE-2017-13987An insufficient access control vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows an unauthorized user to download log files.6.5
- CVE-2017-13989An improper access control vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows unauthorized users to retrieve or modify storage...8.1
Product normalization is registry-driven with AI assist and human review. How it works