PT-2019-12458 · Micro Focus · Micro Focus Arcsight Logger
Publicado
2019-10-04
·
Atualizado
2019-10-10
·
CVE-2019-11655
CVSS v3.1
8.8
Alta
| Vetor | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Micro Focus ArcSight Logger versions 6.7.0 and later
Description
The issue concerns an unrestricted file upload vulnerability. This could allow the upload of files with dangerous types.
Recommendations
For Micro Focus ArcSight Logger versions 6.7.0 and later, consider restricting file uploads to only allow safe file types until a patch is available.
Correção
Unrestricted File Upload
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Micro Focus Arcsight Logger