Vulnerabilities > Microfocus

DATE	CVE	VULNERABILITY TITLE	RISK
2023-10-30	CVE-2023-4964	Open Redirect vulnerability in Microfocus products Potential open redirect vulnerability in opentext Service Management Automation X (SMAX) versions 2020.05, 2020.08, 2020.11, 2021.02, 2021.05, 2021.08, 2021.11, 2022.05, 2022.11 and opentext Asset Management X (AMX) versions 2021.08, 2021.11, 2022.05, 2022.11. network low complexity microfocus CWE-601	6.1
2023-09-12	CVE-2023-4501	Improper Authentication vulnerability in Microfocus products User authentication with username and password credentials is ineffective in OpenText (Micro Focus) Visual COBOL, COBOL Server, Enterprise Developer, and Enterprise Server (including product variants such as Enterprise Test Server), versions 7.0 patch updates 19 and 20, 8.0 patch updates 8 and 9, and 9.0 patch update 1, when LDAP-based authentication is used with certain configurations. network low complexity microfocus CWE-287 critical	9.8
2023-08-11	CVE-2023-32267	Unspecified vulnerability in Microfocus Arcsight Management Center A potential vulnerability has been identified in OpenText / Micro Focus ArcSight Management Center. network low complexity microfocus	8.8
2023-07-20	CVE-2023-32265	Unspecified vulnerability in Microfocus products A potential security vulnerability has been identified in the Enterprise Server Common Web Administration (ESCWA) component used in Enterprise Server, Enterprise Test Server, Enterprise Developer, Visual COBOL, and COBOL Server. An attacker would need to be authenticated into ESCWA to attempt to exploit this vulnerability. network low complexity microfocus	6.5
2023-07-19	CVE-2023-32261	Unspecified vulnerability in Microfocus Dimensions CM A potential vulnerability has been identified in the Micro Focus Dimensions CM Plugin for Jenkins. network low complexity microfocus	6.5
2023-07-19	CVE-2023-32262	Unspecified vulnerability in Microfocus Dimensions CM A potential vulnerability has been identified in the Micro Focus Dimensions CM Plugin for Jenkins. network low complexity microfocus	6.5
2023-07-19	CVE-2023-32263	Unspecified vulnerability in Microfocus Dimensions CM A potential vulnerability has been identified in the Micro Focus Dimensions CM Plugin for Jenkins. network low complexity microfocus	5.7
2023-06-13	CVE-2023-24470	XXE vulnerability in Microfocus Arcsight Logger Potential XML External Entity Injection in ArcSight Logger versions prior to 7.3.0. network low complexity microfocus CWE-611 critical	9.1
2023-06-13	CVE-2023-24469	Cross-site Scripting vulnerability in Microfocus Arcsight Logger Potential Cross-Site Scripting in ArcSight Logger versions prior to 7.3.0 network low complexity microfocus CWE-79	6.1
2023-03-15	CVE-2023-24468	Unspecified vulnerability in Microfocus Netiq Advanced Authentication Broken access control in Advanced Authentication versions prior to 6.4.1.1 and 6.3.7.2 network low complexity microfocus critical	9.8

Vulnerabilities > Microfocus {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Microfocus"}]}

Vulnerabilities > Microfocus