CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-2123

A security audit identified a privilege escalation vulnerability in Operations Agent(<=OA 12.29) on Windows. Under specific conditions Operations Agent may run executables from specific writeable locations.Thanks to Manuel Rickli & Philippe Leiser of Oneconsult AG for reporting this vulnerability

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.2%

CVSS Severity

CVSS v3 Score 7.8

References

https://portal.microfocus.com/s/article/KM000046068

Products affected by CVE-2026-2123

Microfocus » Operations Agent » Version: 12.22

cpe:2.3:a:microfocus:operations_agent:12.22
Microfocus » Operations Agent » Version: 12.23

cpe:2.3:a:microfocus:operations_agent:12.23
Microfocus » Operations Agent » Version: 12.24

cpe:2.3:a:microfocus:operations_agent:12.24
Microfocus » Operations Agent » Version: 12.25

cpe:2.3:a:microfocus:operations_agent:12.25
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-2123

Products

Pricing

Contact Us