CVE-2015-6030

Currently unrated

Key Information:

Vendor: HP
Status: Arcsight Connector Appliance
Vendor: CVE Published:; 4 November 2015

Summary

HP ArcSight Logger 6.0.0.7307.1, ArcSight Command Center 6.8.0.1896.0, and ArcSight Connector Appliance 6.4.0.6881.3 use the root account to execute files owned by the arcsight user, which might allow local users to gain privileges by leveraging arcsight account access.

References

http://www.securitytracker.com/id/1034073

vdb-entryx_refsource_SECTRACK

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/do...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1034072

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Nov 4, 2015
Vulnerability Reserved
Aug 14, 2015