CVSS: 5.4EPSS: 0%CPEs: 7EXPL: 0CVE-2024-5532 – A stored XSS vulnerability has been discovered on OpenText™ Operations Agent (OA).
https://notcve.org/view.php?id=CVE-2024-5532
28 Oct 2024 — Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in OpenText™ Operations Agent. The XSS vulnerability could allow an attacker with local admin permissions to manipulate the content of the internal status page of the Agent on the local system. This issue affects Operations Agent: 12.20, 12.21, 12.22, 12.23, 12.24, 12.25, 12.26. • https://portal.microfocus.com/s/article/KM000035731?language=en_US • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2024-0622 – Local privilege escalation vulnerability could affect OpenText Operations Agent on Non-Windows platforms.
https://notcve.org/view.php?id=CVE-2024-0622
15 Feb 2024 — Local privilege escalation vulnerability affects OpenText Operations Agent product versions 12.15 and 12.20-12.25 when installed on Non-Windows platforms. The vulnerability could allow local privilege escalation. La vulnerabilidad de escalada de privilegios local afecta las versiones 12.15 y 12.20-12.25 del producto OpenText Operations Agent cuando se instala en plataformas que no son Windows. La vulnerabilidad podría permitir una escalada de privilegios locales. Local privilege escalation vulnerability aff... • https://portal.microfocus.com/s/article/KM000026555?language=en_US • CWE-269: Improper Privilege Management •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2021-38129
https://notcve.org/view.php?id=CVE-2021-38129
25 Jan 2022 — Escalation of privileges vulnerability in Micro Focus in Micro Focus Operations Agent, affecting versions 12.x up to and including 12.21. The vulnerability could be exploited by a non-privileged local user to access system monitoring data collected by Operations Agent. Una vulnerabilidad de escalada de privilegios en Micro Focus en Micro Focus Operations Agent, afectando a versiones 12.x hasta 12.21 incluyéndola. La vulnerabilidad podría ser aprovechada por un usuario local no privilegiado para acceder a lo... • https://portal.microfocus.com/s/article/KM000003539?language=en_US •
CVSS: 9.8EPSS: 0%CPEs: 12EXPL: 0CVE-2021-22505
https://notcve.org/view.php?id=CVE-2021-22505
13 Apr 2021 — Escalation of privileges vulnerability in Micro Focus Operations Agent, affects versions 12.0x, 12.10, 12.11, 12.12, 12.14 and 12.15. The vulnerability could be exploited to escalate privileges and execute code under the account of the Operations Agent. Una vulnerabilidad de escalada de privilegios en Micro Focus Operations Agent afecta a versiones 12.0x, 12.10, 12.11, 12.12, 12.14 y 12.15. La vulnerabilidad podría ser explotada para escalar privilegios y ejecutar código bajo la cuenta del Operations A... • https://softwaresupport.softwaregrp.com/doc/KM03792442 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-11861
https://notcve.org/view.php?id=CVE-2020-11861
18 Sep 2020 — Unauthorized escalation of local privileges vulnerability on Micro Focus Operation Agent, affecting all versions prior to versions 12.11. The vulnerability could be exploited to escalate the local privileges and gain root access on the system. Una vulnerabilidad de escalada de privilegios local no autorizada en Micro Focus Operation Agent, que afecta a todas las versiones anteriores a la versión 12.11. La vulnerabilidad podría ser explotada para escalar los privilegios locales y conseguir acceso root e... • https://softwaresupport.softwaregrp.com/doc/KM03709900 •
CVSS: 6.5EPSS: 0%CPEs: 9EXPL: 0CVE-2019-17085
https://notcve.org/view.php?id=CVE-2019-17085
18 Nov 2019 — XXE attack vulnerability on Micro Focus Operations Agent, affected version 12.0, 12.01, 12.02, 12.03, 12.04, 12.05, 12.06, 12.10, 12.11. The vulnerability could be exploited to do an XXE attack on Operations Agent. Una vulnerabilidad de ataque XXE en Micro Focus Operations Agent, versiones afectada 12.0, 12.01, 12.02, 12.03, 12.04, 12.05, 12.06, 12.10, 12.11. La vulnerabilidad podría ser explotada para llevar a cabo un ataque de tipo XXE sobre Operations Agent. • https://softwaresupport.softwaregrp.com/doc/KM03556426 • CWE-611: Improper Restriction of XML External Entity Reference •