CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9521

An SQL injection vulnerability was discovered in Micro Focus Service Manager Automation (SMA), affecting versions 2019.08, 2019.05, 2019.02, 2018.08, 2018.05, 2018.02. The vulnerability could allow for the improper neutralization of special elements in SQL commands and may lead to the product being vulnerable to SQL injection.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.9%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.5

References

Products affected by CVE-2020-9521

Microfocus » Service Manager Automation » Version: 2018.02

cpe:2.3:a:microfocus:service_manager_automation:2018.02
Microfocus » Service Manager Automation » Version: 2018.05

cpe:2.3:a:microfocus:service_manager_automation:2018.05
Microfocus » Service Manager Automation » Version: 2018.08

cpe:2.3:a:microfocus:service_manager_automation:2018.08
Microfocus » Service Manager Automation » Version: 2019.02

cpe:2.3:a:microfocus:service_manager_automation:2019.02
Microfocus » Service Manager Automation » Version: 2019.05

cpe:2.3:a:microfocus:service_manager_automation:2019.05
Microfocus » Service Manager Automation » Version: 2019.08

cpe:2.3:a:microfocus:service_manager_automation:2019.08

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9521

Products

Pricing

Contact Us