Vulnerabilities > HP > Arcsight Logger > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-04 | CVE-2019-11656 | Cross-site Scripting vulnerability in HP Arcsight Logger Stored XSS vulnerability in Micro Focus ArcSight Logger, affects versions prior to Logger 6.7.1 HotFix 6.7.1.8262.0. | 5.4 |
| 2019-07-24 | CVE-2019-3485 | Cross-site Scripting vulnerability in HP Arcsight Logger Mitigates a stored cross site scripting issue in ArcSight Logger versions prior to 6.7.1 | 6.1 |
| 2019-03-25 | CVE-2019-3483 | Unspecified vulnerability in HP Arcsight Logger Mitigates a potential information leakage issue in ArcSight Logger versions prior to 6.7. | 6.5 |
| 2019-03-25 | CVE-2019-3482 | Path Traversal vulnerability in HP Arcsight Logger Mitigates a directory traversal issue in ArcSight Logger versions prior to 6.7. | 6.5 |
| 2019-03-25 | CVE-2019-3480 | Cross-site Scripting vulnerability in HP Arcsight Logger Mitigates a stored/reflected XSS issue in ArcSight Logger versions prior to 6.7. | 6.1 |
| 2016-01-16 | CVE-2015-6864 | Improper Input Validation vulnerability in HP Arcsight Logger HPE ArcSight Logger before 6.1P1 allows remote authenticated users to execute arbitrary code via unspecified input to the (1) Intellicus or (2) client-certificate upload component. | 6.3 |