CVE-2019-3486

Beschreibung:
Mitigates a stored cross site scripting issue in ArcSight Security Management Center versions prior to 2.9.1

CWE: CWE-79

CVSS-Bewertung
CVSS 2: MEDIUM – 4.3 (Version: 2.0)
CVSS 3: MEDIUM – 6.1 (Version: 3.0)

Links:

NVD – CVE-2019-3486
CVE – CVE-2019-3486

Link (max. 20) Quelle Tags
https://community.microfocus.com/t5/ArcSight-Management-Center-ArcMC/ArcSight-Management-Center-2-91-Release-Notes/ta-p/1790266?attachment-id=74671 CONFIRM Vendor Advisory Vendor Advisory Third Party Advisory Vendor Advisory
[oss-security] 20191001 Multiple vulnerabilities in Jenkins plugins MLIST Mailing List Third Party Advisory Third Party Advisory
https://www.zerodayinitiative.com/advisories/ZDI-19-862/ MISC Mailing List Third Party Advisory Third Party Advisory
[hadoop-common-issues] 20191107 [jira] [Created] (HADOOP-16690) Update dependency com.nimbusds:nimbus-jose-jwt due to security vulnerability MLIST Mailing List Third Party Advisory Third Party Advisory
N/A N/A Patch Third Party Advisory Third Party Advisory
https://www.oracle.com/security-alerts/cpujan2021.html MISC Patch Third Party Advisory Third Party Advisory
[avro-dev] 20210415 [jira] [Created] (AVRO-3111) CVE-2019-17195 MLIST Mailing List Third Party Advisory
[avro-dev] 20210416 [jira] [Commented] (AVRO-3111) CVE-2019-17195 MLIST Mailing List Third Party Advisory
[druid-commits] 20210506 [GitHub] [druid] jihoonson commented on a change in pull request #11215: Suppressing false positive CVE-2020-7791 MLIST Mailing List Third Party Advisory
[druid-commits] 20210506 [GitHub] [druid] maytasm commented on a change in pull request #11215: Suppressing false positive CVE-2020-7791 MLIST Mailing List Third Party Advisory
[druid-commits] 20210507 [druid] branch 0.21.1 updated: Suppressing false positive CVE-2020-7791 (#11215) (#11217) MLIST Mailing List Third Party Advisory Vendor Advisory
[tomee-commits] 20210426 [jira] [Comment Edited] (TOMEE-2908) TomEE plus is affected by CVE-2020-7226 (BDSA-2020-2333) vulnerability MLIST Mailing List Third Party Advisory
[tomee-commits] 20210426 [jira] [Commented] (TOMEE-2908) TomEE plus is affected by CVE-2020-7226 (BDSA-2020-2333) vulnerability MLIST Mailing List Third Party Advisory Vendor Advisory
[tomcat-users] 20200726 Re: CVE-2020-1935 MLIST Mailing List Vendor Advisory Vendor Advisory
[tomcat-users] 20200727 RE: CVE-2020-1935 MLIST Mailing List Vendor Advisory
USN-4448-1 UBUNTU Third Party Advisory Vendor Advisory
https://www.oracle.com/security-alerts/cpuoct2020.html MISC Third Party Advisory Vendor Advisory
https://www.oracle.com/security-alerts/cpujan2021.html MISC Third Party Advisory Vendor Advisory
[tomcat-dev] 20210428 [Bug 65272] Problems proccessing HTTP request without CR in last versions MLIST Mailing List Vendor Advisory
[kafka-jira] 20200515 [jira] [Commented] (KAFKA-9997) upgrade log4j lib to address CVE-2020-9488 MLIST Mailing List Vendor Advisory

Quelle: NVD – CVE-2019-3486
Datum Veröffentlichung: 2019-07-25T15:15Z, Datum letzte Änderung: 2021-05-12T20:44Z