Shodan
Vulnerabilities
Vulnerable Software
Microfocus:  Security Vulnerabilities
CVE-2021-22506
Known exploited
Advance configuration exposing Information Leakage vulnerability in Micro Focus Access Manager product, affects all versions prior to version 5.0. The vulnerability could cause information leakage.
CVSS Score
7.5
EPSS Score
0.105
Published
2021-03-26
CVE-2021-22496
Authentication Bypass Vulnerability in Micro Focus Access Manager Product, affects all version prior to version 4.5.3.3. The vulnerability could cause information leakage.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-03-25
CVE-2019-18942
Micro Focus Solutions Business Manager versions prior to 11.7.1 are vulnerable to stored XSS. The application reflects previously stored user input without encoding.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-02-26
CVE-2019-18943
Micro Focus Solutions Business Manager versions prior to 11.7.1 are vulnerable to XML External Entity Processing (XXE) on certain operations.
CVSS Score
6.1
EPSS Score
0.002
Published
2021-02-26
CVE-2019-18944
Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to reflected XSS.
CVSS Score
4.9
EPSS Score
0.001
Published
2021-02-26
CVE-2019-18945
Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to privilege escalation vulnerability.
CVSS Score
7.3
EPSS Score
0.002
Published
2021-02-26
CVE-2019-18946
Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to session fixation.
CVSS Score
4.8
EPSS Score
0.001
Published
2021-02-26
CVE-2019-18947
Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to information disclosure.
CVSS Score
3.5
EPSS Score
0.001
Published
2021-02-26
CVE-2021-22504
Arbitrary code execution vulnerability on Micro Focus Operations Bridge Manager product, affecting versions 10.1x, 10.6x, 2018.05, 2018.11, 2019.05, 2019.11, 2020.05, 2020.10. The vulnerability could allow remote attackers to execute arbitrary code on an OBM server.
CVSS Score
9.8
EPSS Score
0.03
Published
2021-02-12
CVE-2021-22502
Known exploited
Remote Code execution vulnerability in Micro Focus Operation Bridge Reporter (OBR) product, affecting version 10.40. The vulnerability could be exploited to allow Remote Code Execution on the OBR server.
CVSS Score
9.8
EPSS Score
0.94
Published
2021-02-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved