Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microfocus vulnerabilities and exploits
(subscribe to this query)
490
VMScore
CVE-2019-11653
Remote Access Control Bypass in Micro Focus Content Manager. versions 9.1, 9.2, 9.3. The vulnerability could be exploited to manipulate data stored during another user’s CheckIn request.
Microfocus Content Manager 9.1.0
Microfocus Content Manager 9.2.0
Microfocus Content Manager 9.3.0
356
VMScore
CVE-2019-11658
Information exposure in Micro Focus Content Manager, versions 9.1, 9.2 and 9.3. This vulnerability when configured to use an Oracle database, allows valid system users to gain access to a limited subset of records they would not normally be able to access when the system is in an...
Microfocus Content Manager 9.1
Microfocus Content Manager 9.2
Microfocus Content Manager 9.3
445
VMScore
CVE-2019-11669
Modifiable read only check box In Micro Focus Service Manager, versions 9.60p1, 9.61, 9.62. This vulnerability could be exploited to allow unauthorized modification of data.
Microfocus Service Manager 9.61
Microfocus Service Manager 9.60
Microfocus Service Manager 9.62
578
VMScore
CVE-2018-18589
A potential Remote Arbitrary Code Execution vulnerability has been identified in Micro Focus' Real User Monitoring software, versions 9.26IP, 9.30, 9.40 and 9.50. The vulnerability could be exploited to execute arbitrary code.
Microfocus Real User Monitoring 9.30
Microfocus Real User Monitoring 9.40
Microfocus Real User Monitoring 9.50
Microfocus Real User Monitoring 9.26ip
641
VMScore
CVE-2021-22521
A privileged escalation vulnerability has been identified in Micro Focus ZENworks Configuration Management, affecting version 2020 Update 1 and all prior versions. The vulnerability could be exploited to gain unauthorized system privileges.
Microfocus Zenworks Endpoint Security Management 2020
Microfocus Zenworks Configuration Management
Microfocus Zenworks Configuration Management 2020
Microfocus Zenworks Endpoint Security Management
668
VMScore
CVE-2021-22507
Authentication bypass vulnerability in Micro Focus Operations Bridge Manager affects versions 2019.05, 2019.11, 2020.05 and 2020.10. The vulnerability could allow remote malicious users to bypass user authentication and get unauthorized access.
Microfocus Operations Bridge Manager 2020.05
Microfocus Operations Bridge Manager 2019.11
Microfocus Operations Bridge Manager 2019.05
Microfocus Operations Bridge Manager 2020.10
580
VMScore
CVE-2020-11853
Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1.) Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2.) Application Performance Management affecting versions : 9....
Microfocus Operations Bridge Manager 2020.05
Microfocus Operations Bridge Manager 2019.11
Microfocus Operations Bridge Manager 2019.05
Microfocus Operations Bridge Manager 2018.11
Microfocus Operations Bridge Manager 2018.05
Microfocus Operation Bridge Manager 10.11
Microfocus Operation Bridge Manager 10.12
Microfocus Operation Bridge Manager 10.60
Microfocus Operation Bridge Manager 10.61
Microfocus Operation Bridge Manager 10.62
Microfocus Operation Bridge Manager 10.63
Microfocus Operation Bridge Manager
Microfocus Operations Bridge Manager 2019.08
Microfocus Operations Bridge Manager 2018.08
Microfocus Operations Bridge Manager 2018.02
Microfocus Operations Bridge Manager 2017.11
Hp Universal Cmbd Foundation 10.20
Microfocus Application Performance Management 9.50
Microfocus Application Performance Management 9.40
Microfocus Application Performance Management 9.51
Microfocus Data Center Automation
Hp Universal Cmbd Foundation 2018.05
383
VMScore
CVE-2016-1599
Cross-site scripting (XSS) vulnerability in NetIQ Self Service Password Reset (SSPR) 2.x and 3.x prior to 3.3.1 HF2 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Microfocus Self Service Password Reset 3.0
Microfocus Self Service Password Reset 2.0
Microfocus Self Service Password Reset 3.1
Microfocus Self Service Password Reset 3.3
Microfocus Self Service Password Reset 3.3.1
Microfocus Self Service Password Reset 3.2
383
VMScore
CVE-2016-1990
HPE ArcSight ESM 5.x prior to 5.6, 6.0, 6.5.x prior to 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express prior to 6.9.1, allows local users to gain privileges for command execution via unspecified vectors.
Microfocus Arcsight Enterprise Security Manager
Microfocus Arcsight Enterprise Security Manager 6.0
Microfocus Arcsight Enterprise Security Manager 6.5
Microfocus Arcsight Enterprise Security Manager 6.8
Microfocus Arcsight Enterprise Security Manager 6.9
534
VMScore
CVE-2016-1991
HPE ArcSight ESM 5.x prior to 5.6, 6.0, 6.5.x prior to 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express prior to 6.9.1, allows remote authenticated users to conduct unspecified "file download" attacks via unknown vectors.
Microfocus Arcsight Enterprise Security Manager 6.0
Microfocus Arcsight Enterprise Security Manager 6.5
Microfocus Arcsight Enterprise Security Manager 6.8
Microfocus Arcsight Enterprise Security Manager 6.9
Microfocus Arcsight Enterprise Security Manager
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »