CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-11674

Man-in-the-middle vulnerability in Micro Focus Self Service Password Reset, affecting all versions prior to 4.4.0.4. The vulnerability could exploit invalid certificate validation and may result in a man-in-the-middle attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.0%

CVSS Severity

CVSS v3 Score 5.9

CVSS v2 Score 4.3

References

Products affected by CVE-2019-11674

Microfocus » Netiq Self Service Password Reset » Version: 4.0

cpe:2.3:a:microfocus:netiq_self_service_password_reset:4.0
Microfocus » Netiq Self Service Password Reset » Version: 4.1

cpe:2.3:a:microfocus:netiq_self_service_password_reset:4.1
Microfocus » Netiq Self Service Password Reset » Version: 4.2

cpe:2.3:a:microfocus:netiq_self_service_password_reset:4.2
Microfocus » Netiq Self Service Password Reset » Version: 4.3

cpe:2.3:a:microfocus:netiq_self_service_password_reset:4.3
Microfocus » Netiq Self Service Password Reset » Version: 4.4

cpe:2.3:a:microfocus:netiq_self_service_password_reset:4.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-11674

Products

Pricing

Contact Us