Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microfocus directory server - vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2017-5187
A Cross-Site Request Forgery (CWE-352) vulnerability in Directory Server (aka Enterprise Server Administration web UI) in Micro Focus Enterprise Developer and Enterprise Server 2.3 and previous versions, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote...
Microfocus Enterprise Server Monitor And Control -
Microfocus Enterprise Developer 2.3
Microfocus Enterprise Server 2.3
Microfocus Directory Server -
Microfocus Enterprise Server
6.1
CVSSv3
CVE-2017-7421
Reflected and stored Cross-Site Scripting (XSS, CWE-79) vulnerabilities in Directory Server (aka Enterprise Server Administration web UI) and ESMAC (aka Enterprise Server Monitor and Control) in Micro Focus Enterprise Developer and Enterprise Server 2.3 and previous versions, 2.3...
Microfocus Enterprise Server Monitor And Control -
Microfocus Enterprise Developer 2.3
Microfocus Enterprise Server 2.3
Microfocus Directory Server -
Microfocus Enterprise Server
6.5
CVSSv3
CVE-2023-32265
A potential security vulnerability has been identified in the Enterprise Server Common Web Administration (ESCWA) component used in Enterprise Server, Enterprise Test Server, Enterprise Developer, Visual COBOL, and COBOL Server. An attacker would need to be authenticated into ES...
Microfocus Cobol Server 7.0
Microfocus Cobol Server 8.0
Microfocus Cobol Server 6.0
Microfocus Visual Cobol 7.0
Microfocus Visual Cobol 8.0
Microfocus Visual Cobol 6.0
Microfocus Enterprise Developer 7.0
Microfocus Enterprise Developer 8.0
Microfocus Enterprise Developer 6.0
Microfocus Enterprise Test Server 7.0
Microfocus Enterprise Test Server 8.0
Microfocus Enterprise Test Server 6.0
Microfocus Enterprise Server 7.0
Microfocus Enterprise Server 8.0
Microfocus Enterprise Server 6.0
7.5
CVSSv3
CVE-2018-12469
Incorrect handling of an invalid value for an HTTP request parameter by Directory Server (aka Enterprise Server Administration web UI) in Micro Focus Enterprise Developer and Enterprise Server 2.3 Update 2 and previous versions, 3.0 before Patch Update 12, and 4.0 before Patch Up...
Microfocus Enterprise Developer 2.3
Microfocus Enterprise Server 2.3
Microfocus Enterprise Server
Microfocus Enterprise Developer 4.0
Microfocus Enterprise Server 4.0
Microfocus Enterprise Developer 3.0
Microfocus Enterprise Server 3.0
Microfocus Enterprise Developer
8.8
CVSSv3
CVE-2020-9523
Insufficiently protected credentials vulnerability on Micro Focus enterprise developer and enterprise server, affecting all version before 4.0 Patch Update 16, and version 5.0 Patch Update 6. The vulnerability could allow an malicious user to transmit hashed credentials for the u...
Microfocus Enterprise Developer 4.0
Microfocus Enterprise Developer 5.0
Microfocus Enterprise Developer
Microfocus Enterprise Server 4.0
Microfocus Enterprise Server 5.0
Microfocus Enterprise Server
6.5
CVSSv3
CVE-2016-5765
Administrative Server in Micro Focus Host Access Management and Security Server (MSS) and Reflection for the Web (RWeb) and Reflection Security Gateway (RSG) and Reflection ZFE (ZFE) allows remote unauthenticated malicious users to read arbitrary files via a specially crafted URL...
Microfocus Host Access Management And Security Server 12.3
Microfocus Reflection Zfe 2.0.0.52
Microfocus Host Access Management And Security Server 12.2
Microfocus Reflection For The Web 12.3
Microfocus Reflection For The Web 12.1
Microfocus Reflection For The Web 12.2
Microfocus Reflection Zfe 1.4.0.14
Microfocus Reflection Zfe 2.0.1.18
Microfocus Reflection Security Gateway 12.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started