Unrated severityNVD Advisory· Published Nov 4, 2015· Updated May 6, 2026

CVE-2015-6030

Description

HP ArcSight Logger 6.0.0.7307.1, ArcSight Command Center 6.8.0.1896.0, and ArcSight Connector Appliance 6.4.0.6881.3 use the root account to execute files owned by the arcsight user, which might allow local users to gain privileges by leveraging arcsight account access.

Affected products

HP/Arcsight Connector Appliance
cpe:2.3:a:hp:arcsight_connector_appliance:*:*:*:*:*:*:*:*
Range: <=6.4.0.6881.3
HP/Arcsight Logger
cpe:2.3:a:hp:arcsight_logger:6.0.0.7307.1:*:*:*:*:*:*:*
HP/Arcsight Command Center
cpe:2.3:a:hp:arcsight_command_center:6.8.0.1896.0:*:*:*:*:*:*:*
HP/Arcsight Connectors
cpe:2.3:a:hp:arcsight_connectors:*:*:*:*:*:*:*:*
Range: <=7.1.3
HP/Arcsight Express2 versions
cpe:2.3:a:hp:arcsight_express:4.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:hp:arcsight_express:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:hp:arcsight_express:4.0:p1:*:*:*:*:*:*
HP/Arcsight Management Center
cpe:2.3:a:hp:arcsight_management_center:*:p1:*:*:*:*:*:*
Range: <=2.0
Microfocus/Arcsight Enterprise Security Manager
cpe:2.3:a:microfocus:arcsight_enterprise_security_manager:*:*:*:*:*:*:*:*
Range: <=6.5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.kb.cert.org/vuls/id/842252nvdThird Party AdvisoryUS Government Resource
www.securitytracker.com/id/1034072nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1034073nvdThird Party AdvisoryVDB Entry
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000