Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1.) Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2.) Application Performance Management affecting versions : 9.51, 9.50 and 9.40 with uCMDB 10.33 CUP 3 3.) Data Center Automation affected version 2019.11 4.) Operations Bridge (containerized) affecting versions: 2019.11, 2019.08, 2019.05, 2018.11, 2018.08, 2018.05, 2018.02, 2017.11 5.) Universal CMDB affecting version: 2020.05, 2019.11, 2019.05, 2019.02, 2018.11, 2018.08, 2018.05, 11, 10.33, 10.32, 10.31, 10.30 6.) Hybrid Cloud Management affecting version 2020.05 7.) Service Management Automation affecting version 2020.5 and 2020.02. The vulnerability could allow to execute arbitrary code.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
07 Nov 2023, 03:15
Type | Values Removed | Values Added |
---|---|---|
References | () https://softwaresupport.softwaregrp.com/doc/KM03747854 - | |
References | () https://softwaresupport.softwaregrp.com/doc/KM03747950 - | |
References | () https://softwaresupport.softwaregrp.com/doc/KM03747658 - | |
References | () http://packetstormsecurity.com/files/161182/Micro-Focus-UCMDB-Remote-Code-Execution.html - | |
References | () https://softwaresupport.softwaregrp.com/doc/KM03747948 - | |
References | () https://softwaresupport.softwaregrp.com/doc/KM03749879 - | |
References | () https://softwaresupport.softwaregrp.com/doc/KM03747949 - | |
References | () http://packetstormsecurity.com/files/161366/Micro-Focus-Operations-Bridge-Manager-Remote-Code-Execution.html - | |
References | () https://softwaresupport.softwaregrp.com/doc/KM03747657 - |
Information
Published : 2020-10-22 21:15
Updated : 2024-02-28 18:08
NVD link : CVE-2020-11853
Mitre link : CVE-2020-11853
CVE.ORG link : CVE-2020-11853
JSON object : View
Products Affected
hp
- universal_cmbd_foundation
microfocus
- service_manager_automation
- data_center_automation
- application_performance_management
- operation_bridge_manager
- operations_bridge_manager
- hybrid_cloud_management
CWE