Incorrect Authorization Vulnerability Identified in OpenText ArcSight Intelligence
CVE-2024-6358

8.8HIGH

Key Information:

Vendor: Opentext
Status: Arcsight Intelligence
Vendor: CVE Published:; 6 August 2024

Summary

An incorrect authorization vulnerability has been identified in OpenText ArcSight Intelligence. This security flaw allows unauthorized users to potentially gain access to sensitive information, which could lead to data breaches and compromise the integrity of reported data. Organizations that utilize OpenText ArcSight Intelligence should assess their security measures and apply appropriate patches and mitigations to protect their data and systems from potential exploitation.

Affected Version(s)

ArcSight Intelligence 0 < 6.4.13

References

https://portal.microfocus.com/s/article/KM000032595

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 6, 2024
Vulnerability Reserved
Jun 26, 2024