Vulnerabilities > Microfocus
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-13 | CVE-2021-22526 | Open Redirect vulnerability in Microfocus Access Manager 5.0 Open Redirection vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4 | 6.1 |
| 2021-09-13 | CVE-2021-22527 | Unspecified vulnerability in Microfocus Access Manager 5.0 Information leakage vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4 | 7.5 |
| 2021-09-13 | CVE-2021-22528 | Cross-site Scripting vulnerability in Microfocus Access Manager 5.0 Reflected Cross Site Scripting (XSS) vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4 | 5.4 |
| 2021-09-07 | CVE-2021-38123 | Open Redirect vulnerability in Microfocus Network Automation Open Redirect vulnerability in Micro Focus Network Automation, affecting Network Automation versions 10.4x, 10.5x, 2018.05, 2018.11, 2019.05, 2020.02, 2020.08, 2020.11, 2021.05. | 6.1 |
| 2021-09-02 | CVE-2021-22525 | Unspecified vulnerability in Microfocus Access Manager This release addresses a potential information leakage vulnerability in NetIQ Access Manager versions prior to 5.0.1 | 5.5 |
| 2021-08-05 | CVE-2021-22517 | Unspecified vulnerability in Microfocus Data Protector A potential unauthorized privilege escalation vulnerability has been identified in Micro Focus Data Protector. | 8.8 |
| 2021-07-30 | CVE-2021-22521 | Incorrect Authorization vulnerability in Microfocus products A privileged escalation vulnerability has been identified in Micro Focus ZENworks Configuration Management, affecting version 2020 Update 1 and all prior versions. | 6.7 |
| 2021-07-22 | CVE-2021-22522 | Cross-site Scripting vulnerability in Microfocus Verastream Host Integrator Reflected Cross-Site Scripting vulnerability in Micro Focus Verastream Host Integrator, affecting version version 7.8 Update 1 and earlier versions. | 7.1 |
| 2021-07-22 | CVE-2021-22523 | XXE vulnerability in Microfocus Verastream Host Integrator XML External Entity vulnerability in Micro Focus Verastream Host Integrator, affecting version 7.8 Update 1 and earlier versions. | 7.6 |
| 2021-07-12 | CVE-2021-22515 | Incorrect Authorization vulnerability in Microfocus Netiq Advanced Authentication Multi-Factor Authentication (MFA) functionality can be bypassed, allowing the use of single factor authentication in NetIQ Advanced Authentication versions prior to 6.3 SP4 Patch 1. | 6.5 |