Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microfocus vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-5913
Incorrect Privilege Assignment vulnerability in opentext Fortify ScanCentral DAST. The vulnerability could be exploited to gain elevated privileges.This issue affects Fortify ScanCentral DAST versions 21.1, 21.2, 21.2.1, 22.1, 22.1.1, 22.2, 23.1.
Microfocus Fortify Scancentral Dast 22.2
Microfocus Fortify Scancentral Dast 22.1.1
Microfocus Fortify Scancentral Dast 22.1
Microfocus Fortify Scancentral Dast 21.2.1
Microfocus Fortify Scancentral Dast 21.2
Microfocus Fortify Scancentral Dast 21.1
Microfocus Fortify Scancentral Dast 23.1
6.1
CVSSv3
CVE-2018-12480
Mitigates an XSS issue in NetIQ Access Manager versions before 4.4 SP3.
Microfocus Access Manager 4.4
Microfocus Access Manager 4.3
Microfocus Access Manager 4.2
Microfocus Access Manager 4.1
8.8
CVSSv3
CVE-2018-18590
A potential remote code execution and information disclosure vulnerability exists in Micro Focus Operations Bridge containerized suite versions 2017.11, 2018.02, 2018.05, 2018.08. This vulnerability could allow for information disclosure.
Microfocus Operations Bridge 2017.11
Microfocus Operations Bridge 2018.02
Microfocus Operations Bridge 2018.05
Microfocus Operations Bridge 2018.08
8.8
CVSSv3
CVE-2020-9521
An SQL injection vulnerability exists in Micro Focus Service Manager Automation (SMA), affecting versions 2019.08, 2019.05, 2019.02, 2018.08, 2018.05, 2018.02. The vulnerability could allow for the improper neutralization of special elements in SQL commands and may lead to the pr...
Microfocus Service Manager Automation 2019.05
Microfocus Service Manager Automation 2019.02
Microfocus Service Manager Automation 2018.08
Microfocus Service Manager Automation 2018.05
Microfocus Service Manager Automation 2018.02
Microfocus Service Manager Automation 2019.08
6.5
CVSSv3
CVE-2016-5765
Administrative Server in Micro Focus Host Access Management and Security Server (MSS) and Reflection for the Web (RWeb) and Reflection Security Gateway (RSG) and Reflection ZFE (ZFE) allows remote unauthenticated malicious users to read arbitrary files via a specially crafted URL...
Microfocus Host Access Management And Security Server 12.3
Microfocus Reflection Zfe 2.0.0.52
Microfocus Host Access Management And Security Server 12.2
Microfocus Reflection For The Web 12.3
Microfocus Reflection For The Web 12.1
Microfocus Reflection For The Web 12.2
Microfocus Reflection Zfe 1.4.0.14
Microfocus Reflection Zfe 2.0.1.18
Microfocus Reflection Security Gateway 12.1
9.8
CVSSv3
CVE-2017-7420
An Authentication Bypass (CWE-287) vulnerability in ESMAC (aka Enterprise Server Monitor and Control) in Micro Focus Enterprise Developer and Enterprise Server 2.3 and previous versions, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote unauthenticated ...
Microfocus Enterprise Server Monitor And Control -
Microfocus Enterprise Developer 2.3
Microfocus Enterprise Server 2.3
Microfocus Enterprise Server
9.8
CVSSv3
CVE-2020-11849
Elevation of privilege and/or unauthorized access vulnerability in Micro Focus Identity Manager. Affecting versions before 4.7.3 and 4.8.1 hot fix 1. The vulnerability could allow information exposure that can result in an elevation of privilege or an unauthorized access.
Microfocus Identity Manager 4.8.1
Microfocus Identity Manager 4.7.4
Microfocus Identity Manager
7.5
CVSSv3
CVE-2018-6487
Remote Disclosure of Information in Micro Focus Universal CMDB Foundation Software, version numbers 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 4.10, 4.11. This vulnerability could be remotely exploited to allow disclosure of information.
Microfocus Universal Cmdb Foundation Software 10.10
Microfocus Universal Cmdb Foundation Software 10.11
Microfocus Universal Cmdb Foundation Software 10.20
Microfocus Universal Cmdb Foundation Software 10.21
Microfocus Universal Cmdb Foundation Software 10.22
Microfocus Universal Cmdb Foundation Software 10.30
Microfocus Universal Cmdb Foundation Software 10.31
Microfocus Universal Cmdb Foundation Software 4.10
Microfocus Universal Cmdb Foundation Software 4.11
9.8
CVSSv3
CVE-2018-6486
XML External Entity (XXE) vulnerability in Micro Focus Fortify Audit Workbench (AWB) and Micro Focus Fortify Software Security Center (SSC), versions 16.10, 16.20, 17.10. This vulnerability could be exploited to allow a XML External Entity (XXE) injection.
Microfocus Fortify Audit Workbench 16.10
Microfocus Fortify Audit Workbench 16.20
Microfocus Fortify Audit Workbench 17.10
Microfocus Fortify Software Security Center 16.10
Microfocus Fortify Software Security Center 16.20
Microfocus Fortify Software Security Center 17.10
8.1
CVSSv3
CVE-2021-22498
XML External Entity Injection vulnerability in Micro Focus Application Lifecycle Management (Previously known as Quality Center) product. The vulnerability affects versions 12.x, 12.60 Patch 5 and previous versions, 15.0.1 Patch 2 and previous versions and 15.5. The vulnerability...
Microfocus Application Lifecycle Management 15.5
Microfocus Application Lifecycle Management 15.0.1
Microfocus Application Lifecycle Management
Microfocus Application Lifecycle Management 12.60
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »