← Volver a CVEs
CVE-2020-11851
CRITICAL9.8
Descripcion
Arbitrary code execution vulnerability on Micro Focus ArcSight Logger product, affecting all version prior to 7.1.1. The vulnerability could be remotely exploited resulting in the execution of arbitrary code.
Detalles CVE
Puntuacion CVSS v3.19.8
SeveridadCRITICAL
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado11/17/2020
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
microfocus:arcsight_logger
Debilidades (CWE)
CWE-94
Referencias
https://community.microfocus.com/t5/Logger/Logger-Release-Notes-7-1-1/ta-p/2837600(security@opentext.com)
https://community.microfocus.com/t5/Logger/Logger-Release-Notes-7-1-1/ta-p/2837600(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.