CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-22512
https://notcve.org/view.php?id=CVE-2021-22512
Cross-Site Request Forgery (CSRF) vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. The vulnerability affects version 6.7 and earlier versions. The vulnerability could allow form validation without permission checks. Una vulnerabilidad de tipo Cross-Site Request Forgery (CSRF) en el plugin de Micro Focus Application Automation Tools Plugin - Jenkins. La vulnerabilidad afecta a versión 6.7 y versiones anteriores. • https://www.jenkins.io/security/advisory/2021-04-07/#SECURITY-2132 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-22511
https://notcve.org/view.php?id=CVE-2021-22511
Improper Certificate Validation vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. The vulnerability affects version 6.7 and earlier versions. The vulnerability could allow unconditionally disabling of SSL/TLS certificates. Una vulnerabilidad de comprobación inapropiada de certificado en el plugin de Micro Focus Application Automation Tools Plugin - Jenkins. La vulnerabilidad afecta a versión 6.7 y versiones anteriores. • https://www.jenkins.io/security/advisory/2021-04-07/#SECURITY-2176 • CWE-295: Improper Certificate Validation •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2021-22510
https://notcve.org/view.php?id=CVE-2021-22510
Reflected XSS vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. The vulnerability affects all version 6.7 and earlier versions. Una vulnerabilidad de tipo XSS reflejado en el plugin de Micro Focus Application Automation Tools Plugin - Jenkins. La vulnerabilidad afecta a todas las versiones 6.7 y anteriores • https://www.jenkins.io/security/advisory/2021-04-07/#SECURITY-2175 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-22513
https://notcve.org/view.php?id=CVE-2021-22513
Missing Authorization vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. The vulnerability affects version 6.7 and earlier versions. The vulnerability could allow access without permission checks. Una falta de una vulnerabilidad de autorización en el plugin de Micro Focus Application Automation Tools Plugin - Jenkins. La vulnerabilidad afecta a versión 6.7 y versiones anteriores. • https://www.jenkins.io/security/advisory/2021-04-07/#SECURITY-2132 • CWE-862: Missing Authorization •
CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0CVE-2021-22507
https://notcve.org/view.php?id=CVE-2021-22507
Authentication bypass vulnerability in Micro Focus Operations Bridge Manager affects versions 2019.05, 2019.11, 2020.05 and 2020.10. The vulnerability could allow remote attackers to bypass user authentication and get unauthorized access. Una vulnerabilidad de omisión de autenticación en Micro Focus Operations Bridge Manager afecta a las versiones 2019.05, 2019.11, 2020.05 y 2020.10. La vulnerabilidad podría permitir a atacantes remotos omitir la autenticación de usuarios y obtener acceso no autorizado • https://softwaresupport.softwaregrp.com/doc/KM03793283 • CWE-287: Improper Authentication •