Vulnerabilities > Microfocus

DATE	CVE	VULNERABILITY TITLE	RISK
2020-06-16	CVE-2020-11840	Unspecified vulnerability in Microfocus Arcsight Management Center Unauthorized information disclosure vulnerability in Micro Focus ArcSight Management Center product, Affecting versions 2.6.1, 2.7.x, 2.8.x, 2.9.x prior to 2.9.4. network low complexity microfocus	4.3
2020-06-16	CVE-2020-11838	Cross-site Scripting vulnerability in Microfocus Arcsight Management Center Cross Site Scripting (XSS) vulnerability in Micro Focus ArcSight Management Center product, Affecting versions 2.6.1, 2.7.x, 2.8.x, 2.9.x prior to 2.9.4. network low complexity microfocus CWE-79	5.4
2020-06-12	CVE-2020-11839	Cross-site Scripting vulnerability in Microfocus Arcsight Logger 6.61/7.0/7.0.1 Cross Site Scripting (XSS) vulnerability in Micro Focus ArcSight Logger product, affecting all version from 6.6.1 up to version 7.0.1. network low complexity microfocus CWE-79	6.1
2020-05-29	CVE-2020-11844	Incorrect Authorization vulnerability in Microfocus Service Management Automation Incorrect Authorization vulnerability in Micro Focus Container Deployment Foundation component affects products: - Hybrid Cloud Management. network low complexity microfocus CWE-863 critical	9.8
2020-05-19	CVE-2020-11845	Cross-site Scripting vulnerability in Microfocus Service Manager Cross Site Scripting vulnerability in Micro Focus Service Manager product. network low complexity microfocus CWE-79	6.1
2020-05-18	CVE-2020-9524	Cross-site Scripting vulnerability in Microfocus Enterprise Developer and Enterprise Server Cross Site scripting vulnerability on Micro Focus Enterprise Server and Enterprise developer, affecting all versions prior to version 5.0 Patch Update 8. network low complexity microfocus CWE-79	5.4
2020-05-04	CVE-2020-11842	Unspecified vulnerability in Microfocus Verastream Host Integrator Information disclosure vulnerability in Micro Focus Verastream Host Integrator (VHI) product, affecting versions earlier than 7.8 Update 1 (7.8.49 or 7.8.0.49). network low complexity microfocus	7.5
2020-04-17	CVE-2020-9523	Insufficiently Protected Credentials vulnerability in Microfocus Enterprise Developer Insufficiently protected credentials vulnerability on Micro Focus enterprise developer and enterprise server, affecting all version prior to 4.0 Patch Update 16, and version 5.0 Patch Update 6. network low complexity microfocus CWE-522	8.8
2020-03-26	CVE-2020-9521	SQL Injection vulnerability in Microfocus Service Manager Automation An SQL injection vulnerability was discovered in Micro Focus Service Manager Automation (SMA), affecting versions 2019.08, 2019.05, 2019.02, 2018.08, 2018.05, 2018.02. network low complexity microfocus CWE-89	8.8
2020-03-25	CVE-2020-9520	Cross-site Scripting vulnerability in Microfocus Vibe 4.0.2 A stored XSS vulnerability was discovered in Micro Focus Vibe, affecting all Vibe version prior to 4.0.7. network low complexity microfocus CWE-79	5.4

Vulnerabilities > Microfocus {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Microfocus"}]}

Vulnerabilities > Microfocus