Vulnerabilities > CVE-2020-11858 - Unspecified vulnerability in Microfocus Operations Bridge and Operations Bridge Manager

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

microfocus

NVD

Published: 2020-10-27

Updated: 2023-11-07

Summary

Code execution with escalated privileges vulnerability in Micro Focus products Operation Bridge Manager and Operation Bridge (containerized). The vulneravility affects: 1.) Operation Bridge Manager versions: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, 10.63,10.62, 10.61, 10.60, 10.12, 10.11, 10.10 and all earlier versions. 2.) Operations Bridge (containerized) versions: 2020.05, 2019.08, 2019.05, 2018.11, 2018.08, 2018.05. 2018.02 and 2017.11. The vulnerability could allow local attackers to execute code with escalated privileges.

Vulnerable Configurations

Part	Description	Count
Application	Microfocus Microfocus Operations Bridge 2017.11 Microfocus Operations Bridge 2018.02 Microfocus Operations Bridge 2018.05 Microfocus Operations Bridge 2018.08 Microfocus Operations Bridge 2020.05 Microfocus Operations Bridge 2019.08 Microfocus Operations Bridge 2019.05 Microfocus Operations Bridge 2018.11 Microfocus Operations Bridge Manager 2020.05 Microfocus Operations Bridge Manager 2019.11 Microfocus Operations Bridge Manager 2019.05 Microfocus Operations Bridge Manager 2018.11 Microfocus Operations Bridge Manager 2018.05 Microfocus Operations Bridge Manager 10.63 Microfocus Operations Bridge Manager 10.62 Microfocus Operations Bridge Manager 10.61 Microfocus Operations Bridge Manager 10.60 Microfocus Operations Bridge Manager 10.12 Microfocus Operations Bridge Manager 10.11 Microfocus Operations Bridge Manager - Microfocus Operations Bridge Manager 10.10	21

Summary

Vulnerable Configurations

References