Vulnerabilities > Microfocus > Operation Bridge Reporter > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-02-08 CVE-2021-22502 OS Command Injection vulnerability in Microfocus Operation Bridge Reporter 10.40
Remote Code execution vulnerability in Micro Focus Operation Bridge Reporter (OBR) product, affecting version 10.40.
network
low complexity
microfocus CWE-78
critical
9.8
2020-09-22 CVE-2020-11856 Missing Authentication for Critical Function vulnerability in Microfocus Operation Bridge Reporter
Arbitrary code execution vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier.
network
low complexity
microfocus CWE-306
critical
9.8
2020-09-22 CVE-2020-11857 Use of Hard-coded Credentials vulnerability in Microfocus Operation Bridge Reporter
An Authorization Bypass vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier.
network
low complexity
microfocus CWE-798
critical
9.8