Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.9
CVE-2015-2903
- EPSS 3.21%
- Published 04.11.2015 03:59:02
- Last modified 12.04.2025 10:46:40
The CWSAPI SOAP service in HP ArcSight SmartConnectors before 7.1.6 has a hardcoded password, which makes it easier for remote attackers to obtain administrative access by leveraging knowledge of this password.
6.8
CVE-2015-2902
- EPSS 0.95%
- Published 04.11.2015 03:59:00
- Last modified 12.04.2025 10:46:40
HP ArcSight SmartConnectors before 7.1.6 do not verify X.509 certificates from Logger devices, which allows man-in-the-middle attackers to spoof devices and obtain sensitive information via a crafted certificate.
1