Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microfocus solutions business manager vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2019-18942
Micro Focus Solutions Business Manager versions before 11.7.1 are vulnerable to stored XSS. The application reflects previously stored user input without encoding.
Microfocus Solutions Business Manager
4.8
CVSSv3
CVE-2019-18944
Micro Focus Solutions Business Manager Application Repository versions before 11.7.1 are vulnerable to reflected XSS.
Microfocus Solutions Business Manager
8
CVSSv3
CVE-2019-18945
Micro Focus Solutions Business Manager Application Repository versions before 11.7.1 are vulnerable to privilege escalation vulnerability.
Microfocus Solutions Business Manager
4.8
CVSSv3
CVE-2019-18946
Micro Focus Solutions Business Manager Application Repository versions before 11.7.1 are vulnerable to session fixation.
Microfocus Solutions Business Manager
3.5
CVSSv3
CVE-2019-18947
Micro Focus Solutions Business Manager Application Repository versions before 11.7.1 are vulnerable to information disclosure.
Microfocus Solutions Business Manager
9.8
CVSSv3
CVE-2018-7679
Micro Focus Solutions Business Manager versions before 11.4 when ASP.NET is configured with execute permission on the virtual directories and does not validate the contents of user avatar images, could lead to remote code execution.
Microfocus Solutions Business Manager
6.1
CVSSv3
CVE-2018-7680
Micro Focus Solutions Business Manager versions before 11.4 can reflect back HTTP header values.
Microfocus Solutions Business Manager
4.8
CVSSv3
CVE-2018-7681
Micro Focus Solutions Business Manager versions before 11.4 allows JavaScript to be embedded in URLs placed in "Favorites" folder. If the user has certain administrative privileges then this vulnerability can impact other users in the system.
Microfocus Solutions Business Manager
7.5
CVSSv3
CVE-2018-7683
Micro Focus Solutions Business Manager versions before 11.4 might reveal certain sensitive information in server log files.
Microfocus Solutions Business Manager
9.8
CVSSv3
CVE-2018-19641
Unauthenticated remote code execution issue in Micro Focus Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions before 11.5.
Microfocus Solutions Business Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »