CVE-2015-6864

medium

HPE

CVSS v3 Base Score

6.3

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

EPSS Score

0.7%

Exploitation probability in 30 days

Top 29% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Confidentiality

Low

Integrity

Low

Availability

Low

Published: January 16, 2016 (3772 days ago)

Last Modified: May 6, 2026

Vendor: HPE

Source: NVD

Description

HPE ArcSight Logger before 6.1P1 allows remote authenticated users to execute arbitrary code via unspecified input to the (1) Intellicus or (2) client-certificate upload component.

CWE

CWE-20

Affected Products

hp arcsight logger

References

🔗 h20566.www2.hpe.com 🔗 h20566.www2.hpe.com

CVE-2015-6864

Vulnerability Report

Description

CWE

Affected Products

References