CVE-2015-6863

high

HPE

CVSS v3 Base Score

7.3

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

EPSS Score

2.5%

Exploitation probability in 30 days

Top 15% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Confidentiality

Low

Integrity

Low

Availability

Low

Published: January 16, 2016 (3773 days ago)

Last Modified: May 6, 2026

Vendor: HPE

Source: NVD

Description

HPE ArcSight Logger before 6.1P1 allows remote attackers to execute arbitrary code via unspecified input to the (1) Intellicus or (2) client-certificate upload component.

CWE

CWE-20

Affected Products

hp arcsight logger

References

🔗 h20566.www2.hpe.com 🔗 h20566.www2.hpe.com

CVE-2015-6863

Vulnerability Report

Description

CWE

Affected Products

References