PT-2015-7118 · Hewlett Packard · Hp Arcsight Connector Appliance+2
Published
2015-11-04
·
Updated
2018-10-17
·
CVE-2015-6030
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
HP ArcSight Logger version 6.0.0.7307.1
HP ArcSight Command Center version 6.8.0.1896.0
HP ArcSight Connector Appliance version 6.4.0.6881.3
Description
The issue allows local users to potentially gain privileges by leveraging access to the
arcsight account. This is because the software uses the root account to execute files owned by the arcsight user.Recommendations
For HP ArcSight Logger version 6.0.0.7307.1, consider restricting access to the
arcsight account to minimize the risk of exploitation.
For HP ArcSight Command Center version 6.8.0.1896.0, restrict the execution of files owned by the arcsight user to prevent potential privilege escalation.
For HP ArcSight Connector Appliance version 6.4.0.6881.3, limit the use of the root account for executing files to reduce the risk of exploitation.Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Hp Arcsight Command Center
Hp Arcsight Connector Appliance
Hp Arcsight Logger