Vulnerabilities > Microfocus > Application Automation Tools
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-16 | CVE-2024-4184 | XXE vulnerability in Microfocus Application Automation Tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and below. | 8.0 |
| 2024-10-16 | CVE-2024-4189 | XXE vulnerability in Microfocus Application Automation Tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and below. | 8.0 |
| 2024-10-16 | CVE-2024-4211 | Unspecified vulnerability in Microfocus Application Automation Tools Improper Validation of Specified Quantity in Input vulnerability in OpenText OpenText Application Automation Tools allows Exploiting Incorrectly Configured Access Control Security Levels. Multiple missing permission checks - ALM job config has been discovered in OpenText Application Automation Tools. | 2.4 |
| 2024-10-16 | CVE-2024-4690 | XXE vulnerability in Microfocus Application Automation Tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and below. | 8.0 |
| 2024-10-16 | CVE-2024-4692 | Unspecified vulnerability in Microfocus Application Automation Tools Improper Validation of Specified Quantity in Input vulnerability in OpenText OpenText Application Automation Tools allows Exploiting Incorrectly Configured Access Control Security Levels. Multiple missing permission checks - Service Virtualization config has been discovered in in OpenText Application Automation Tools. | 2.4 |
| 2021-04-08 | CVE-2021-22513 | Missing Authorization vulnerability in Microfocus Application Automation Tools Missing Authorization vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. | 6.5 |
| 2021-04-08 | CVE-2021-22512 | Cross-Site Request Forgery (CSRF) vulnerability in Microfocus Application Automation Tools Cross-Site Request Forgery (CSRF) vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. | 6.5 |
| 2021-04-08 | CVE-2021-22511 | Improper Certificate Validation vulnerability in Microfocus Application Automation Tools Improper Certificate Validation vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. | 6.5 |
| 2021-04-08 | CVE-2021-22510 | Cross-site Scripting vulnerability in Microfocus Application Automation Tools Reflected XSS vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. | 6.1 |