Vulnerabilities > CVE-2019-11661 - Unspecified vulnerability in Microfocus Service Manager

CVSS 8.3 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

LOW

network

low complexity

microfocus

NVD

Published: 2019-09-18

Updated: 2023-11-07

Summary

Allow changes to some table by non-SysAdmin in Micro Focus Service Manager product versions 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. This vulnerability could be exploited to allow unauthorized access and modification of data.

Vulnerable Configurations

Part	Description	Count
Application	Microfocus Microfocus Service Manager 9.30 Microfocus Service Manager 9.31 Microfocus Service Manager 9.32 Microfocus Service Manager 9.33 Microfocus Service Manager 9.34 Microfocus Service Manager 9.35 Microfocus Service Manager 9.40 Microfocus Service Manager 9.41 Microfocus Service Manager 9.50 Microfocus Service Manager 9.51 Microfocus Service Manager 9.52 Microfocus Service Manager 9.60 Microfocus Service Manager 9.61 Microfocus Service Manager 9.62	15

References

https://softwaresupport.softwaregrp.com/doc/KM03518316