CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-12468

A vulnerability in the administration console of Micro Focus GroupWise prior to version 18.0.2 may allow a remote attacker authenticated as an administrator to upload files to an arbitrary path on the server. In certain circumstances this could result in remote code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.011

EPSS Ranking 77.4%

CVSS Severity

CVSS v3 Score 9.1

CVSS v2 Score 6.5

References

https://www.novell.com/support/kb/doc.php?id=7023223
https://www.novell.com/support/kb/doc.php?id=7023223

Products affected by CVE-2018-12468

Microfocus » Groupwise » Version: 18

cpe:2.3:a:microfocus:groupwise:18
Microfocus » Groupwise » Version: 18.0.1

cpe:2.3:a:microfocus:groupwise:18.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-12468

Products

Pricing

Contact Us