Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microfocus solutions business manager vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-19642
Denial of service issue in Micro Focus Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions before 11.5.
Microfocus Solutions Business Manager
6.1
CVSSv3
CVE-2019-3477
Micro Focus Solution Business Manager versions before 11.4.2 is susceptible to open redirect.
Microfocus Solutions Business Manager
7.5
CVSSv3
CVE-2018-19643
Information leakage issue in Micro Focus Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions before 11.5.
Microfocus Solutions Business Manager
9.8
CVSSv3
CVE-2018-19645
An Authentication Bypass issue exists in Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions before 11.5.
Microfocus Solutions Business Manager
8
CVSSv3
CVE-2019-18943
Micro Focus Solutions Business Manager versions before 11.7.1 are vulnerable to XML External Entity Processing (XXE) on certain operations.
Microfocus Solutions Business Manager
4.8
CVSSv3
CVE-2019-18944
Micro Focus Solutions Business Manager Application Repository versions before 11.7.1 are vulnerable to reflected XSS.
Microfocus Solutions Business Manager
4.8
CVSSv3
CVE-2019-18946
Micro Focus Solutions Business Manager Application Repository versions before 11.7.1 are vulnerable to session fixation.
Microfocus Solutions Business Manager
9.8
CVSSv3
CVE-2018-19641
Unauthenticated remote code execution issue in Micro Focus Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions before 11.5.
Microfocus Solutions Business Manager
6.1
CVSSv3
CVE-2018-19644
Reflected cross site script issue in Micro Focus Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions before 11.5.
Microfocus Solutions Business Manager
9.8
CVSSv3
CVE-2018-7679
Micro Focus Solutions Business Manager versions before 11.4 when ASP.NET is configured with execute permission on the virtual directories and does not validate the contents of user avatar images, could lead to remote code execution.
Microfocus Solutions Business Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »