Vulnerabilities > CVE-2019-18943 - XXE vulnerability in Microfocus Solutions Business Manager

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

NVD

Published: 2021-02-26

Updated: 2023-11-07

Summary

Micro Focus Solutions Business Manager versions prior to 11.7.1 are vulnerable to XML External Entity Processing (XXE) on certain operations.

Part	Description	Count
Application	Microfocus Microfocus Solutions Business Manager 10.1.3 Microfocus Solutions Business Manager 10.1.3.1 Microfocus Solutions Business Manager 10.1.4 Microfocus Solutions Business Manager 10.1.4.1 Microfocus Solutions Business Manager 10.1.5 Microfocus Solutions Business Manager 10.1.5.1 Microfocus Solutions Business Manager 10.1.5.2 Microfocus Solutions Business Manager 10.1.5.3 Microfocus Solutions Business Manager 10.1.5.4 Microfocus Solutions Business Manager 11.0 Microfocus Solutions Business Manager 11.0.1 Microfocus Solutions Business Manager 11.0.1.1 Microfocus Solutions Business Manager 11.1 Microfocus Solutions Business Manager 11.2 Microfocus Solutions Business Manager 11.3 Microfocus Solutions Business Manager 11.3.1 Microfocus Solutions Business Manager 11.4 Microfocus Solutions Business Manager 11.4.1 Microfocus Solutions Business Manager 11.4.2 Microfocus Solutions Business Manager 11.5	20