Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An improper access control vulnerability in ArcSight ESM and ArcSight ESM Express, any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1, allows unauthorized users to alter the maximum size of storage groups and enable/disable the setting for the 'follow schedule' function.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
HPE ArcSight Enterprise Security Manager和Enterprise Security Manager Express 访问控制错误漏洞
Vulnerability Description
HPE ArcSight ESM(Enterprise Security Manager)和ESM Express都是美国惠普企业(Hewlett Packard Enterprise,HPE)公司的兼具事件关联和安全分析功能的企业安全管理软件。该软件可实时收集、关联和报告企业范围内的安全事件,以便能够及时检测到异常或未授权的活动。 HPE ArcSight ESM和ArcSight ESM Express 6.9.1c Patch 4和6.11.0 Patch 1之前的6.x版本中存在访问控制错误漏洞。
CVSS Information
N/A
Vulnerability Type
N/A