Vulnerabilities > Microfocus

DATE	CVE	VULNERABILITY TITLE	RISK
2021-02-08	CVE-2021-22502	OS Command Injection vulnerability in Microfocus Operation Bridge Reporter 10.40 Remote Code execution vulnerability in Micro Focus Operation Bridge Reporter (OBR) product, affecting version 10.40. network low complexity microfocus CWE-78 critical	9.8
2021-02-06	CVE-2021-22500	Cross-Site Request Forgery (CSRF) vulnerability in Microfocus Application Performance Management 9.40/9.50/9.51 Cross Site Request Forgery vulnerability in Micro Focus Application Performance Management product, affecting versions 9.40, 9.50 and 9.51. network low complexity microfocus CWE-352	6.5
2021-02-06	CVE-2021-22499	Cross-site Scripting vulnerability in Microfocus Application Performance Management 9.40/9.50/9.51 Persistent Cross-Site scripting vulnerability in Micro Focus Application Performance Management product, affecting versions 9.40, 9.50 and 9.51. network low complexity microfocus CWE-79	4.8
2021-01-19	CVE-2021-22498	XXE vulnerability in Microfocus Application Lifecycle Management XML External Entity Injection vulnerability in Micro Focus Application Lifecycle Management (Previously known as Quality Center) product. network low complexity microfocus CWE-611	8.1
2020-12-11	CVE-2020-25838	Unspecified vulnerability in Microfocus Filr Unauthorized disclosure of sensitive information vulnerability in Micro Focus Filr product. network low complexity microfocus	6.5
2020-11-20	CVE-2020-25839	SQL Injection vulnerability in Microfocus Identity Manager 4.8 NetIQ Identity Manager 4.8 prior to version 4.8 SP2 HF1 are affected by an injection vulnerability. network low complexity microfocus CWE-89 critical	9.8
2020-11-17	CVE-2020-25833	Cross-site Scripting vulnerability in Microfocus Idol Persistent cross-Site Scripting vulnerability on Micro Focus IDOL product, affecting all version prior to version 12.7. network low complexity microfocus CWE-79	4.8
2020-11-17	CVE-2020-25832	Cross-site Scripting vulnerability in Microfocus Filr 4.2.1 Reflected Cross Site scripting vulnerability on Micro Focus Filr product, affecting version 4.2.1. network low complexity microfocus CWE-79	5.4
2020-11-17	CVE-2020-11851	Code Injection vulnerability in Microfocus Arcsight Logger 6.61/7.0/7.0.1 Arbitrary code execution vulnerability on Micro Focus ArcSight Logger product, affecting all version prior to 7.1.1. network low complexity microfocus CWE-94 critical	9.8
2020-11-17	CVE-2020-25834	Cross-site Scripting vulnerability in Microfocus Arcsight Logger 6.61/7.0/7.0.1 Cross-Site Scripting vulnerability on Micro Focus ArcSight Logger product, affecting version 7.1. network low complexity microfocus CWE-79	5.4

Vulnerabilities > Microfocus {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Microfocus"}]}

Vulnerabilities > Microfocus