Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2022-26331
PUBLISHED
More InfoOfficial Page
Assigner-microfocus
Assigner Org ID-f81092c5-7f14-476d-80dc-24857f90be84
View Known Exploited Vulnerability (KEV) details
Published At-31 Aug, 2022 | 15:52
Updated At-03 Aug, 2024 | 05:03
Rejected At-
▼CVE Numbering Authority (CNA)
Potential vulnerabilities have been identified in Micro Focus ArcSight Logger. The vulnerabilities could be remotely exploited resulting in Self Cross-Site Scripting (XSS).

Potential vulnerabilities have been identified in Micro Focus ArcSight Logger. The vulnerabilities could be remotely exploited resulting in Information Disclosure, or Self Cross-Site Scripting (XSS). This issue affects: Micro Focus ArcSight Logger versions prior to v7.2.2 version and prior versions.

Affected Products
Vendor
Micro Focus International LimitedMicro Focus
Product
Micro Focus ArcSight Logger
Versions
Affected
  • From unspecified before v7.2.2 (custom)
Problem Types
TypeCWE IDDescription
textN/ASelf Cross-Site Scripting
Type: text
CWE ID: N/A
Description: Self Cross-Site Scripting
Metrics
VersionBase scoreBase severityVector
3.16.1MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Version: 3.1
Base score: 6.1
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Micro Focus has made the following mitigation information available to resolve the vulnerabilities for the impacted versions of ArcSight Logger: • Logger 7.2.2 https://www.microfocus.com/support/downloads/

Configurations
Workarounds
Exploits
Credits
Micro Focus would like to give a special thanks to Michal Skowron for responsibly disclosing those vulnerabilities.
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.microfocus.com/support/downloads/
x_refsource_MISC
https://portal.microfocus.com/s/article/KM000010167?language=en_US
x_refsource_MISC
Hyperlink: https://www.microfocus.com/support/downloads/
Resource:
x_refsource_MISC
Hyperlink: https://portal.microfocus.com/s/article/KM000010167?language=en_US
Resource:
x_refsource_MISC
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.microfocus.com/support/downloads/
x_refsource_MISC
x_transferred
https://portal.microfocus.com/s/article/KM000010167?language=en_US
x_refsource_MISC
x_transferred
Hyperlink: https://www.microfocus.com/support/downloads/
Resource:
x_refsource_MISC
x_transferred
Hyperlink: https://portal.microfocus.com/s/article/KM000010167?language=en_US
Resource:
x_refsource_MISC
x_transferred
Details not found