Vulnerabilities > Microfocus > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-11 | CVE-2019-17087 | Unspecified vulnerability in Microfocus Acutoweb Unauthorized file download vulnerability in all supported versions of Micro Focus AcuToWeb. | 7.5 |
| 2019-09-18 | CVE-2019-11661 | Unspecified vulnerability in Microfocus Service Manager Allow changes to some table by non-SysAdmin in Micro Focus Service Manager product versions 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. | 8.3 |
| 2019-09-17 | CVE-2019-11665 | Unspecified vulnerability in Microfocus Service Manager Data exposure in Micro Focus Service Manager product versions 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. | 7.5 |
| 2019-09-17 | CVE-2019-11666 | Deserialization of Untrusted Data vulnerability in Microfocus Service Manager Insecure deserialization of untrusted data in Micro Focus Service Manager product versions 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. | 8.8 |
| 2019-09-17 | CVE-2019-11667 | Unspecified vulnerability in Microfocus Service Manager Unauthorized access to contact information in Micro Focus Service Manager, versions 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. | 7.5 |
| 2019-09-13 | CVE-2019-11660 | Untrusted Search Path vulnerability in Microfocus Data Protector Privileges manipulation in Micro Focus Data Protector, versions 10.00, 10.01, 10.02, 10.03, 10.04, 10.10, 10.20, 10.30, 10.40. | 7.8 |
| 2019-09-10 | CVE-2019-11669 | Unspecified vulnerability in Microfocus Service Manager 9.60/9.61/9.62 Modifiable read only check box In Micro Focus Service Manager, versions 9.60p1, 9.61, 9.62. | 7.5 |
| 2019-09-10 | CVE-2019-11668 | Unspecified vulnerability in Microfocus products HTTP cookie in Micro Focus Service manager, Versions 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. | 7.5 |
| 2019-08-23 | CVE-2019-11654 | Path Traversal vulnerability in Microfocus Verastream Host Integrator 7.5/7.6/7.7 Path traversal vulnerability in Micro Focus Verastream Host Integrator (VHI), versions 7.7 SP2 and earlier, The vulnerability allows remote unauthenticated attackers to read arbitrary files. | 7.5 |
| 2019-06-03 | CVE-2019-11646 | Unspecified vulnerability in Microfocus Service Manager Remote unauthorized command execution and unauthorized disclosure of information in Micro Focus Service Manager, versions 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61. | 8.8 |