Cross-Site Scripting in HP ArcSight Enterprise Security Manager Web Interface
CVE-2013-4815

Currently unrated

Key Information:

Vendor: Microfocus
Status: Arcsight Enterprise Security Manager
Vendor: CVE Published:; 20 September 2013

What is CVE-2013-4815?

A cross-site scripting (XSS) vulnerability exists within the web interface of HP ArcSight Enterprise Security Manager (ESM) prior to version 5.5. This flaw permits remote attackers to inject arbitrary web scripts or HTML into the interface via unspecified vectors, potentially impacting the security of users interacting with the web interface. Prompt remediation is essential to mitigate risks associated with unauthorized actions or information disclosures.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Sep 20, 2013

JSON

Microfocus

What is CVE-2013-4815?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.