Vulnerabilities > Microfocus > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-28 | CVE-2021-22514 | Unspecified vulnerability in Microfocus Application Performance Management 9.40/9.50/9.51 An arbitrary code execution vulnerability exists in Micro Focus Application Performance Management, affecting versions 9.40, 9.50 and 9.51. | 9.8 |
| 2021-04-13 | CVE-2021-22505 | Unspecified vulnerability in Microfocus Operations Agent Escalation of privileges vulnerability in Micro Focus Operations Agent, affects versions 12.0x, 12.10, 12.11, 12.12, 12.14 and 12.15. | 9.8 |
| 2021-04-08 | CVE-2021-22507 | Improper Authentication vulnerability in Microfocus Operations Bridge Manager Authentication bypass vulnerability in Micro Focus Operations Bridge Manager affects versions 2019.05, 2019.11, 2020.05 and 2020.10. | 9.8 |
| 2021-02-12 | CVE-2021-22504 | Unspecified vulnerability in Microfocus Operations Bridge Manager Arbitrary code execution vulnerability on Micro Focus Operations Bridge Manager product, affecting versions 10.1x, 10.6x, 2018.05, 2018.11, 2019.05, 2019.11, 2020.05, 2020.10. | 9.8 |
| 2021-02-08 | CVE-2021-22502 | OS Command Injection vulnerability in Microfocus Operation Bridge Reporter 10.40 Remote Code execution vulnerability in Micro Focus Operation Bridge Reporter (OBR) product, affecting version 10.40. | 9.8 |
| 2020-11-20 | CVE-2020-25839 | SQL Injection vulnerability in Microfocus Identity Manager 4.8 NetIQ Identity Manager 4.8 prior to version 4.8 SP2 HF1 are affected by an injection vulnerability. | 9.8 |
| 2020-11-17 | CVE-2020-11851 | Code Injection vulnerability in Microfocus Arcsight Logger 6.61/7.0/7.0.1 Arbitrary code execution vulnerability on Micro Focus ArcSight Logger product, affecting all version prior to 7.1.1. | 9.8 |
| 2020-10-27 | CVE-2020-11854 | Use of Hard-coded Credentials vulnerability in Microfocus products Arbitrary code execution vlnerability in Operation bridge Manager, Application Performance Management and Operations Bridge (containerized) vulnerability in Micro Focus products products Operation Bridge Manager, Operation Bridge (containerized) and Application Performance Management. | 9.8 |
| 2020-09-22 | CVE-2020-11856 | Missing Authentication for Critical Function vulnerability in Microfocus Operation Bridge Reporter Arbitrary code execution vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier. | 9.8 |
| 2020-09-22 | CVE-2020-11857 | Use of Hard-coded Credentials vulnerability in Microfocus Operation Bridge Reporter An Authorization Bypass vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier. | 9.8 |