Arbitrary Code Execution Vulnerability in HPE ArcSight Logger
CVE-2015-6863
7.3HIGH
What is CVE-2015-6863?
HPE ArcSight Logger prior to version 6.1P1 is susceptible to a vulnerability that allows remote attackers to execute arbitrary code. This is facilitated through unspecified input to either the Intellicus component or the client-certificate upload feature. Threat actors can exploit this vulnerability to gain unauthorized control over the affected system, potentially leading to data breaches and further malicious activities.