CVE-2019-3485

Beschreibung:
Mitigates a stored cross site scripting issue in ArcSight Logger versions prior to 6.7.1

CWE: CWE-79

CVSS-Bewertung
CVSS 2: MEDIUM – 4.3 (Version: 2.0)
CVSS 3: MEDIUM – 6.1 (Version: 3.0)

Links:

NVD – CVE-2019-3485
CVE – CVE-2019-3485

Link (max. 20) Quelle Tags
https://community.microfocus.com/t5/Logger/Logger-Release-Notes-6-71/ta-p/1790256?attachment-id=75011 MISC Release Notes Vendor Advisory Third Party Advisory Vendor Advisory
109363 BID Third Party Advisory VDB Entry Third Party Advisory
https://www.zerodayinitiative.com/advisories/ZDI-19-862/ MISC Mailing List Third Party Advisory Third Party Advisory
[hadoop-common-issues] 20191107 [jira] [Created] (HADOOP-16690) Update dependency com.nimbusds:nimbus-jose-jwt due to security vulnerability MLIST Mailing List Third Party Advisory Third Party Advisory
N/A N/A Patch Third Party Advisory Third Party Advisory
https://www.oracle.com/security-alerts/cpujan2021.html MISC Patch Third Party Advisory Third Party Advisory
[avro-dev] 20210415 [jira] [Created] (AVRO-3111) CVE-2019-17195 MLIST Mailing List Third Party Advisory
[avro-dev] 20210416 [jira] [Commented] (AVRO-3111) CVE-2019-17195 MLIST Mailing List Third Party Advisory
[druid-commits] 20210506 [GitHub] [druid] jihoonson commented on a change in pull request #11215: Suppressing false positive CVE-2020-7791 MLIST Mailing List Third Party Advisory
[druid-commits] 20210506 [GitHub] [druid] maytasm commented on a change in pull request #11215: Suppressing false positive CVE-2020-7791 MLIST Mailing List Third Party Advisory
[druid-commits] 20210507 [druid] branch 0.21.1 updated: Suppressing false positive CVE-2020-7791 (#11215) (#11217) MLIST Mailing List Third Party Advisory Vendor Advisory
[tomee-commits] 20210426 [jira] [Comment Edited] (TOMEE-2908) TomEE plus is affected by CVE-2020-7226 (BDSA-2020-2333) vulnerability MLIST Mailing List Third Party Advisory
[tomee-commits] 20210426 [jira] [Commented] (TOMEE-2908) TomEE plus is affected by CVE-2020-7226 (BDSA-2020-2333) vulnerability MLIST Mailing List Third Party Advisory Vendor Advisory
[tomcat-users] 20200726 Re: CVE-2020-1935 MLIST Mailing List Vendor Advisory Vendor Advisory
[tomcat-users] 20200727 RE: CVE-2020-1935 MLIST Mailing List Vendor Advisory
USN-4448-1 UBUNTU Third Party Advisory Vendor Advisory
https://www.oracle.com/security-alerts/cpuoct2020.html MISC Third Party Advisory Vendor Advisory
https://www.oracle.com/security-alerts/cpujan2021.html MISC Third Party Advisory Vendor Advisory
[tomcat-dev] 20210428 [Bug 65272] Problems proccessing HTTP request without CR in last versions MLIST Mailing List Vendor Advisory
[kafka-jira] 20200515 [jira] [Commented] (KAFKA-9997) upgrade log4j lib to address CVE-2020-9488 MLIST Mailing List Vendor Advisory

Quelle: NVD – CVE-2019-3485
Datum Veröffentlichung: 2019-07-24T16:15Z, Datum letzte Änderung: 2021-05-12T20:44Z