Vulnerabilities in Micro Focus
127 resultsCVE-2018-19642MEDIUMSolutions Business Manager (SBM) Denial of Service issue in version prior to 11.5EPSS 0.7%CVE-2019-11658—Information exposure in Micro Focus Content Manager, versions 9.1, 9.2 and 9.3. This vulnerability when configured to use an Oracle databaseEPSS 0.7%CVE-2021-22515MEDIUMMulti-Factor Authentication (MFA) downgrade exposure in NetIQ Advanced Authentication ServerEPSS 0.7%CVE-2020-25834—Cross-Site Scripting vulnerability on Micro Focus ArcSight Logger product, affecting version 7.1. The vulnerability could be remotely exploiEPSS 0.7%CVE-2019-11662—Class and method names in error message in Micro Focus Service Manager product versions 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50EPSS 0.7%CVE-2018-6495MEDIUMMFSBGN03808 rev.1 - Micro Focus UCMDB, Cross-Site ScriptingEPSS 0.7%CVE-2018-7692—Unvalidated redirect vulnerability in in NetIQ eDirectory before 9.1.1 HF1.EPSS 0.6%CVE-2019-3477—Micro Focus Solution Business Manager versions prior to 11.4.2 is susceptible to open redirect.EPSS 0.6%CVE-2019-11647—A potential XSS exists in Self Service Password Reset, in Micro Focus NetIQ Software all versions prior to version 4.4. The vulnerability coEPSS 0.6%CVE-2018-7680—Micro Focus Solutions Business Manager versions prior to 11.4 can reflect back HTTP header values.EPSS 0.6%CVE-2018-17952—Cross site scripting vulnerability in eDirectory prior to 9.1 SP2EPSS 0.6%CVE-2018-17949—Cross site scripting vulnerability in iManager prior to 3.1 SP2.EPSS 0.6%CVE-2022-38755MEDIUMFilr Remote unauthenticated user enumeration for versions prior to 4.3.1.1EPSS 0.6%CVE-2020-11860—Cross-Site Scripting vulnerability on Micro Focus ArcSight Logger product, affecting all version prior to 7.1.1. The vulnerability could be EPSS 0.6%CVE-2021-22524MEDIUMDenial of service vulnerability in NetIQ Access Manager versions prior to version 4.5.4 and 5.0.1EPSS 0.6%CVE-2023-32261MEDIUMDimensions CM Plugin for Jenkins 0.8.17 – 0.9.3EPSS 0.6%CVE-2022-38754HIGHCVE-2022-38754 - Micro Focus Operations Bridge Manager and OpsBridge Containerized - Cross Site Scripting (XSS)EPSS 0.6%CVE-2019-11649MEDIUMKM03461174 Micro Focus Fortify Software Security Center Server, CVE-2019-11649EPSS 0.6%CVE-2018-6497HIGHMFSBGN03810 rev.1 - Universal CMDB, Deserialization Java Objects and CSRFEPSS 0.6%CVE-2018-6504HIGHMFSBGN03824 rev.1 - ArcSight Management Center, Insufficient Access Control, Reflected Cross Site Scripting, Access Control vulnerability, Cross-Site Request Forgery (CSRF), Unauthenticated File Download, Directory Traversal VulnerabilityEPSS 0.6%