CVE-2020-11840
First published: Tue Jun 16 2020(Updated: )
Unauthorized information disclosure vulnerability in Micro Focus ArcSight Management Center product, Affecting versions 2.6.1, 2.7.x, 2.8.x, 2.9.x prior to 2.9.4. The vulnerabilities could be remotely exploited resulting unauthorized information disclosure.
Credit: security@microfocus.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microfocus Arcsight Management Center | >=2.7.0<2.9.4 | |
| Microfocus Arcsight Management Center | =2.6.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID is CVE-2020-11840.
What is the title of this vulnerability?
The title of this vulnerability is 'Unauthorized information disclosure vulnerability in Micro Focus ArcSight Management Center product.'
What is the severity of CVE-2020-11840?
The severity of CVE-2020-11840 is medium with a severity value of 4.3.
Which versions of Micro Focus ArcSight Management Center product are affected by this vulnerability?
Versions 2.6.1, 2.7.x, 2.8.x, 2.9.x prior to 2.9.4 of Micro Focus ArcSight Management Center product are affected by this vulnerability.
How can this vulnerability be exploited?
This vulnerability can be remotely exploited, resulting in unauthorized information disclosure.
- collector/nvd-index
- agent/references
- agent/type
- agent/description
- agent/event
- agent/severity
- agent/author
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/microfocus
- canonical/microfocus arcsight management center
- version/microfocus arcsight management center/2.7.0
- version/microfocus arcsight management center/2.6.1