VYPR
High severity7.8NVD Advisory· Published Mar 16, 2016· Updated Jun 17, 2026

CVE-2016-1990

CVE-2016-1990

Description

HPE ArcSight ESM 5.x before 5.6, 6.0, 6.5.x before 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express before 6.9.1, allows local users to gain privileges for command execution via unspecified vectors.

Affected products

7
  • cpe:2.3:a:microfocus:arcsight_enterprise_security_manager:*:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:microfocus:arcsight_enterprise_security_manager:*:*:*:*:*:*:*:*range: <=5.6
    • cpe:2.3:a:microfocus:arcsight_enterprise_security_manager:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:microfocus:arcsight_enterprise_security_manager:6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:microfocus:arcsight_enterprise_security_manager:6.8:*:*:*:*:*:*:*
    • cpe:2.3:a:microfocus:arcsight_enterprise_security_manager:6.9:*:*:*:express:*:*:*
  • HPE/ArcSight ESMllm-create
    Range: <5.6, <6.5C SP1 Patch 2, <P1
  • Range: <6.9.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.