CVE-2024-9841

A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in OpenText ArcSight Management Center and ArcSight Platform. The vulnerability could be remotely exploited.
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microfocus:arcsight_management_center:*:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:arcsight_management_center:3.2.5:-:*:*:*:*:*:*
cpe:2.3:a:microfocus:arcsight_platform:*:*:*:*:*:*:*:*

History

13 Nov 2024, 19:34

Type Values Removed Values Added
CPE cpe:2.3:a:microfocus:arcsight_platform:*:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:arcsight_management_center:3.2.5:-:*:*:*:*:*:*
cpe:2.3:a:microfocus:arcsight_management_center:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.1
First Time Microfocus
Microfocus arcsight Platform
Microfocus arcsight Management Center
Summary
  • (es) Se ha identificado una vulnerabilidad de tipo Cross-Site Scripting (XSS) reflejado en OpenText ArcSight Management Center y ArcSight Platform. La vulnerabilidad podría explotarse de forma remota.
References () https://portal.microfocus.com/s/article/KM000035977 - () https://portal.microfocus.com/s/article/KM000035977 - Vendor Advisory

08 Nov 2024, 18:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-11-08 18:15

Updated : 2024-11-13 19:34


NVD link : CVE-2024-9841

Mitre link : CVE-2024-9841

CVE.ORG link : CVE-2024-9841


JSON object : View

Products Affected

microfocus

  • arcsight_platform
  • arcsight_management_center
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')