HIGH🇬🇧 English

CVE-2020-11855

CVSS 7.8v3.1pub. 2020-09-22upd. 2024-11-21

An Authorization Bypass vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier. The vulnerability could allow local attackers on the OBR host to execute code with escalated privileges.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Microfocus Operation Bridge Reporter

    APP
    Microfocus
    ≤ 10.40
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2021-22502CRITICAL9.8⚠ KEVten sam produkt

Remote Code execution vulnerability in Micro Focus Operation Bridge Reporter (OBR) product, affecting version ...

CVE-2020-11856CRITICAL9.8ten sam produkt

Arbitrary code execution vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and e...

CVE-2020-11857CRITICAL9.8ten sam produkt

An Authorization Bypass vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and ea...

CVE-2023-4501CRITICAL9.8ten sam vendor

User authentication with username and password credentials is ineffective in OpenText (Micro Focus) Visual COB...

CVE-2023-24470CRITICAL9.1ten sam vendor

Potential XML External Entity Injection in ArcSight Logger versions prior to 7.3.0.