Hewlett Packard · Hp Arcsight Logger · CVE-2015-6029
**Name of the Vulnerable Software and Affected Versions**
HP ArcSight Logger versions prior to 6.0 P2
**Description**
The issue allows remote attackers to obtain access via a brute-force approach due to the lack of limitation on attempts to authenticate to the SOAP interface.
**Recommendations**
For HP ArcSight Logger versions prior to 6.0 P2, update to version 6.0 P2 or later to resolve the issue. As a temporary workaround, consider restricting access to the SOAP interface to minimize the risk of exploitation.