Vulnerabilities > Microfocus > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-16 | CVE-2020-9522 | Cross-site Scripting vulnerability in Microfocus Arcsight Enterprise Security Manager Express 7.0.0/7.2/7.2.1 Cross Site Scripting (XSS) vulnerability in Micro Focus ArcSight Enterprise Security Manager (ESM) product, Affecting versions 7.0.x, 7.2 and 7.2.1 . | 6.1 |
| 2020-06-16 | CVE-2020-11841 | Unspecified vulnerability in Microfocus Arcsight Management Center Unauthorized information disclosure vulnerability in Micro Focus ArcSight Management Center product, Affecting versions 2.6.1, 2.7.x, 2.8.x, 2.9.x prior to 2.9.4. | 4.3 |
| 2020-06-16 | CVE-2020-11840 | Unspecified vulnerability in Microfocus Arcsight Management Center Unauthorized information disclosure vulnerability in Micro Focus ArcSight Management Center product, Affecting versions 2.6.1, 2.7.x, 2.8.x, 2.9.x prior to 2.9.4. | 4.3 |
| 2020-06-16 | CVE-2020-11838 | Cross-site Scripting vulnerability in Microfocus Arcsight Management Center Cross Site Scripting (XSS) vulnerability in Micro Focus ArcSight Management Center product, Affecting versions 2.6.1, 2.7.x, 2.8.x, 2.9.x prior to 2.9.4. | 5.4 |
| 2020-06-12 | CVE-2020-11839 | Cross-site Scripting vulnerability in Microfocus Arcsight Logger 6.61/7.0/7.0.1 Cross Site Scripting (XSS) vulnerability in Micro Focus ArcSight Logger product, affecting all version from 6.6.1 up to version 7.0.1. | 6.1 |
| 2020-05-19 | CVE-2020-11845 | Cross-site Scripting vulnerability in Microfocus Service Manager Cross Site Scripting vulnerability in Micro Focus Service Manager product. | 6.1 |
| 2020-05-18 | CVE-2020-9524 | Cross-site Scripting vulnerability in Microfocus Enterprise Developer and Enterprise Server Cross Site scripting vulnerability on Micro Focus Enterprise Server and Enterprise developer, affecting all versions prior to version 5.0 Patch Update 8. | 5.4 |
| 2020-03-25 | CVE-2020-9520 | Cross-site Scripting vulnerability in Microfocus Vibe 4.0.2 A stored XSS vulnerability was discovered in Micro Focus Vibe, affecting all Vibe version prior to 4.0.7. | 5.4 |
| 2020-03-16 | CVE-2020-9518 | Unspecified vulnerability in Microfocus Service Manager Login filter can access configuration files vulnerability in Micro Focus Service Manager (Web Tier), affecting versions 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. | 5.3 |
| 2020-03-16 | CVE-2020-9519 | Unspecified vulnerability in Microfocus Service Manager HTTP methods reveled in Web services vulnerability in Micro Focus Service manager (server), affecting versions 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, 9.63. | 5.3 |