CVE-2019-3485
MEDIUMHP ArcSight Logger < 6.7.1 - Stored Cross-Site Scripting
Title source: llmDescription
Mitigates a stored cross site scripting issue in ArcSight Logger versions prior to 6.7.1
References (2)
Core 2
Core References
Various Sources x_refsource_confirm
https://community.microfocus.com/t5/Logger/Logger-Release-Notes-6-71/ta-p/1790256?attachment-id=75011
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/109363
Scores
CVSS v3
4.6
EPSS
0.0030
EPSS Percentile
53.8%
Attack Vector
ADJACENT_NETWORK
CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Details
CWE
CWE-79
Status
published
Products (1)
hp/arcsight_logger
< 6.7.1
Published
Jul 24, 2019
Tracked Since
Feb 18, 2026