Vulnerabilities > Microfocus > Project AND Portfolio Management

DATE CVE VULNERABILITY TITLE RISK
2018-02-15 CVE-2017-8993 Cross-site Scripting vulnerability in Microfocus Project and Portfolio Management
A Remote Cross-Site Scripting vulnerability in HPE Project and Portfolio Management (PPM) version v9.30, v9.31, v9.32, v9.40 was found.
network
low complexity
microfocus CWE-79
5.4
5.4
2017-12-13 CVE-2017-14362 Cross-Site Request Forgery (CSRF) vulnerability in Microfocus Project and Portfolio Management 9.32
Cross-Site Request Forgery vulnerability in Micro Focus Project and Portfolio Management Center, version 9.32.
network
low complexity
microfocus CWE-352
7.3
7.3
2017-12-13 CVE-2017-14361 Unspecified vulnerability in Microfocus Project and Portfolio Management 9.32
Man-In-The-Middle vulnerability in Micro Focus Project and Portfolio Management Center, version 9.32.
network
high complexity
microfocus
7.4
7.4