CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0CVE-2019-18944
https://notcve.org/view.php?id=CVE-2019-18944
Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to reflected XSS. Micro Focus Solutions Business Manager Application Repository versiones anteriores a 11.7.1, son vulnerables a un ataque de tipo XSS reflejado • http://knowledgebase.serena.com/resources/sites/KNOWLEDGEBASE/content/live/SOLUTIONS/142000/S142001/en_US/sbm_11.7.1_security_bulletin.htm • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) •
CVSS: 8.0EPSS: 0%CPEs: 1EXPL: 0CVE-2019-18945 – privilege escalation
https://notcve.org/view.php?id=CVE-2019-18945
Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to privilege escalation vulnerability. Micro Focus Solutions Business Manager Application Repository versiones anteriores a 11.7.1, son vulnerables a una vulnerabilidad de escalada de privilegios • http://knowledgebase.serena.com/resources/sites/KNOWLEDGEBASE/content/live/SOLUTIONS/142000/S142001/en_US/sbm_11.7.1_security_bulletin.htm • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 3.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-18947 – information disclosure
https://notcve.org/view.php?id=CVE-2019-18947
Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to information disclosure. Micro Focus Solutions Business Manager Application Repository versiones anteriores a 11.7.1, son vulnerables a una divulgación de información • http://knowledgebase.serena.com/resources/sites/KNOWLEDGEBASE/content/live/SOLUTIONS/142000/S142001/en_US/sbm_11.7.1_security_bulletin.htm • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-18946 – Session fixation
https://notcve.org/view.php?id=CVE-2019-18946
Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to session fixation. Micro Focus Solutions Business Manager Application Repository versiones anteriores a 11.7.1, son vulnerables a una fijación de sesiones • http://knowledgebase.serena.com/resources/sites/KNOWLEDGEBASE/content/live/SOLUTIONS/142000/S142001/en_US/sbm_11.7.1_security_bulletin.htm • CWE-384: Session Fixation •
CVSS: 10.0EPSS: 0%CPEs: 13EXPL: 0CVE-2021-22504
https://notcve.org/view.php?id=CVE-2021-22504
Arbitrary code execution vulnerability on Micro Focus Operations Bridge Manager product, affecting versions 10.1x, 10.6x, 2018.05, 2018.11, 2019.05, 2019.11, 2020.05, 2020.10. The vulnerability could allow remote attackers to execute arbitrary code on an OBM server. Una vulnerabilidad de ejecución de código arbitraria en el producto Micro Focus Operations Bridge Manager, afectan a versiones 10.1x, 10.6x, 2018.05, 2018.11, 2019.05, 2019.11, 2020.05, 2020.10. La vulnerabilidad podría permitir a atacantes remotos ejecutar código arbitrario en un servidor OBM • https://softwaresupport.softwaregrp.com/doc/KM03777855 •