CVE-2015-6030 — HIGH (7.2) — White Hats Nepal

Q: How severe is CVE-2015-6030?

CVE-2015-6030 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2015-6030?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Arcsight Connector Appliance, Hp Arcsight Logger, Hp Arcsight Command Center, Hp Arcsight Connectors, Hp Arcsight Express.

Vulnerability Description

HP ArcSight Logger 6.0.0.7307.1, ArcSight Command Center 6.8.0.1896.0, and ArcSight Connector Appliance 6.4.0.6881.3 use the root account to execute files owned by the arcsight user, which might allow local users to gain privileges by leveraging arcsight account access.

CVSS Score

7.2

HIGH

AV:L/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Hp	Arcsight Connector Appliance	<= 6.4.0.6881.3
Hp	Arcsight Logger	6.0.0.7307.1
Hp	Arcsight Command Center	6.8.0.1896.0
Hp	Arcsight Connectors	<= 7.1.3
Hp	Arcsight Express	4.0
Hp	Arcsight Management Center	<= 2.0
Microfocus	Arcsight Enterprise Security Manager	<= 6.5

Related Weaknesses (CWE)

CWE-264

References

http://www.kb.cert.org/vuls/id/842252Third Party AdvisoryUS Government Resource
http://www.securitytracker.com/id/1034072Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1034073Third Party AdvisoryVDB Entry
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-cThird Party Advisory
http://www.kb.cert.org/vuls/id/842252Third Party AdvisoryUS Government Resource
http://www.securitytracker.com/id/1034072Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1034073Third Party AdvisoryVDB Entry
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-cThird Party Advisory

FAQ

What is CVE-2015-6030?

CVE-2015-6030 is a vulnerability with a CVSS score of 7.2 (HIGH). HP ArcSight Logger 6.0.0.7307.1, ArcSight Command Center 6.8.0.1896.0, and ArcSight Connector Appliance 6.4.0.6881.3 use the root account to execute files owned by the arcsight user, which might allow...

How severe is CVE-2015-6030?

CVE-2015-6030 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-6030?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Arcsight Connector Appliance, Hp Arcsight Logger, Hp Arcsight Command Center, Hp Arcsight Connectors, Hp Arcsight Express.