CVE-2015-6030
First published: Wed Nov 04 2015(Updated: )
HP ArcSight Logger 6.0.0.7307.1, ArcSight Command Center 6.8.0.1896.0, and ArcSight Connector Appliance 6.4.0.6881.3 use the root account to execute files owned by the arcsight user, which might allow local users to gain privileges by leveraging arcsight account access.
Credit: cret@cert.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HP ArcSight Connector Appliance Firmware | <=6.4.0.6881.3 | |
| OpenText ArcSight Logger | =6.0.0.7307.1 | |
| HP ArcSight Command Center | =6.8.0.1896.0 | |
| HP ArcSight Connectors | <=7.1.3 | |
| HP ArcSight Express | =4.0 | |
| HP ArcSight Express | =4.0-p1 | |
| OpenText ArcSight Management Center | <=2.0 | |
| OpenText ArcSight Enterprise Security Manager | <=6.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2015-6030?
CVE-2015-6030 is considered a high-severity vulnerability due to its potential for privilege escalation.
How do I fix CVE-2015-6030?
To fix CVE-2015-6030, ensure you update to the latest versions of affected HP ArcSight products that address this vulnerability.
What systems are impacted by CVE-2015-6030?
CVE-2015-6030 affects HP ArcSight Logger version 6.0.0.7307.1, ArcSight Command Center version 6.8.0.1896.0, and various versions of ArcSight Connector Appliances.
What kind of attack does CVE-2015-6030 enable?
CVE-2015-6030 enables local users to gain elevated privileges by exploiting the misuse of the arcsight account.
Is there a workaround for CVE-2015-6030?
Currently, the best approach is to update the software as there are no documented effective workarounds for CVE-2015-6030.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/hp
- canonical/hp arcsight connector appliance firmware
- version/hp arcsight connector appliance firmware/6.4.0.6881.3
- canonical/opentext arcsight logger
- version/opentext arcsight logger/6.0.0.7307.1
- canonical/hp arcsight command center
- version/hp arcsight command center/6.8.0.1896.0
- canonical/hp arcsight connectors
- version/hp arcsight connectors/7.1.3
- canonical/hp arcsight express
- version/hp arcsight express/4.0
- version/hp arcsight express/4.0-p1
- canonical/opentext arcsight management center
- version/opentext arcsight management center/2.0
- vendor/microfocus
- canonical/opentext arcsight enterprise security manager
- version/opentext arcsight enterprise security manager/6.5