Privilege Escalation Vulnerability Discovered in OpenText ArcSight Intelligence
CVE-2024-6359

9.8CRITICAL

Key Information:

Vendor: Opentext
Status: Arcsight Intelligence
Vendor: CVE Published:; 6 August 2024

Summary

A privilege escalation vulnerability has been identified in OpenText ArcSight Intelligence that may allow attackers to gain unauthorized access to sensitive functionalities or data within the platform. This issue poses significant risks to organizations relying on OpenText solutions for security monitoring and incident response, as it could enable users with lower privileges to elevate their access levels, thereby compromising the integrity and confidentiality of the system.

Affected Version(s)

ArcSight Intelligence 0 < 6.4.13

References

https://portal.microfocus.com/s/article/KM000032594

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 6, 2024
Vulnerability Reserved
Jun 26, 2024