// For flags

CVE-2019-11651

 

Severity Score

6.1
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Reflected XSS on Micro Focus Enterprise Developer and Enterprise Server, all versions prior to version 3.0 Patch Update 20, version 4.0 Patch Update 12, and version 5.0 Patch Update 2. The vulnerability could be exploited to redirect a user to a malicious page or forge certain types of web requests.

Una vulnerabilidad de tipo XSS Reflejado en Micro Focus Enterprise Developer y Enterprise Server, todas las versiones anteriores a la versión 3.0 Patch Update 20, versión 4.0 Patch Update 12 y versión 5.0 Patch Update 2. La vulnerabilidad podría explotarse para redireccionar a un usuario hacia una página maliciosa o falsificar ciertos tipos de peticiones web.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
None
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
None
Integrity
Partial
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2019-05-01 CVE Reserved
  • 2019-10-02 CVE Published
  • 2023-03-08 EPSS Updated
  • 2024-08-04 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CAPEC
References (1)
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
-
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_1
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_10
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_11
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_12
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_13
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_14
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_15
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_16
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_17
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_18
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_19
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_2
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_3
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_4
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_5
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_6
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_7
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_8
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
3.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "3.0"
patch_9
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
4.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "4.0"
-
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
4.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "4.0"
patch_1
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
4.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "4.0"
patch_10
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
4.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "4.0"
patch_11
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
4.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "4.0"
patch_2
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
4.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "4.0"
patch_3
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
4.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "4.0"
patch_4
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
4.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "4.0"
patch_5
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
4.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "4.0"
patch_6
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
4.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "4.0"
patch_7
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
4.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "4.0"
patch_8
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
4.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "4.0"
patch_9
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
5.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "5.0"
-
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Developer
Search vendor "Microfocus" for product "Enterprise Developer"
5.0
Search vendor "Microfocus" for product "Enterprise Developer" and version "5.0"
patch_1
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
-
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_1
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_10
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_11
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_12
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_13
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_14
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_15
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_16
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_17
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_18
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_19
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_2
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_3
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_4
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_5
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_6
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_7
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_8
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
3.0
Search vendor "Microfocus" for product "Enterprise Server" and version "3.0"
patch_9
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
4.0
Search vendor "Microfocus" for product "Enterprise Server" and version "4.0"
-
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
4.0
Search vendor "Microfocus" for product "Enterprise Server" and version "4.0"
patch_1
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
4.0
Search vendor "Microfocus" for product "Enterprise Server" and version "4.0"
patch_10
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
4.0
Search vendor "Microfocus" for product "Enterprise Server" and version "4.0"
patch_11
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
4.0
Search vendor "Microfocus" for product "Enterprise Server" and version "4.0"
patch_2
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
4.0
Search vendor "Microfocus" for product "Enterprise Server" and version "4.0"
patch_3
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
4.0
Search vendor "Microfocus" for product "Enterprise Server" and version "4.0"
patch_4
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
4.0
Search vendor "Microfocus" for product "Enterprise Server" and version "4.0"
patch_5
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
4.0
Search vendor "Microfocus" for product "Enterprise Server" and version "4.0"
patch_6
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
4.0
Search vendor "Microfocus" for product "Enterprise Server" and version "4.0"
patch_7
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
4.0
Search vendor "Microfocus" for product "Enterprise Server" and version "4.0"
patch_8
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
4.0
Search vendor "Microfocus" for product "Enterprise Server" and version "4.0"
patch_9
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
5.0
Search vendor "Microfocus" for product "Enterprise Server" and version "5.0"
-
Affected
Microfocus
Search vendor "Microfocus"
Enterprise Server
Search vendor "Microfocus" for product "Enterprise Server"
5.0
Search vendor "Microfocus" for product "Enterprise Server" and version "5.0"
patch_1
Affected