Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
HPE ArcSight ESM 5.x before 5.6, 6.0, 6.5.x before 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express before 6.9.1, allows local users to gain privileges for command execution via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
HPE ArcSight ESM和ESM Express 代码注入漏洞
Vulnerability Description
HPE ArcSight ESM(Enterprise Security Manager)和ESM Express都是美国惠普企业(Hewlett Packard Enterprise,HPE)公司的兼具事件关联和安全分析功能的企业安全管理软件。该软件可实时收集、关联和报告企业范围内的安全事件,以便能够及时检测到异常或未授权的活动。 HPE ArcSight ESM和ESM Express中存在安全漏洞。本地攻击者可利用该漏洞获取命令执行的权限。以下产品及版本受到影响:HPE ArcSight ESM 5
CVSS Information
N/A
Vulnerability Type
N/A