Arcsight C5400 Appliance

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2011-2779	Microfocus Windows Event Log Smartconnector		0.00	—	0.00		Jul 19, 2011	Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 uses world-writable permissions for exported report files, which allows local users to change or delete log data by modifying a file, a different vulnerability than CVE-2011-0770.
CVE-2011-0770	Microfocus Windows Event Log Smartconnector		0.00	—	0.01		Jul 19, 2011	Cross-site scripting (XSS) vulnerability in Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 allows remote attackers to inject arbitrary web script or HTML via the Windows XP variable in a file.

CVE-2011-2779Jul 19, 2011
Microfocus
Windows Event Log Smartconnector
risk 0.00cvss —epss 0.00
Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 uses world-writable permissions for exported report files, which allows local users to change or delete log data by modifying a file, a different vulnerability than CVE-2011-0770.
CVE-2011-0770Jul 19, 2011
Microfocus
Windows Event Log Smartconnector
risk 0.00cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 allows remote attackers to inject arbitrary web script or HTML via the Windows XP variable in a file.