MEDIUM🇵🇱 Wersja polska

CVE-2021-22500

CVSS 6.5v3.1pub. 2021-02-06upd. 2024-11-21

Cross Site Request Forgery vulnerability in Micro Focus Application Performance Management product, affecting versions 9.40, 9.50 and 9.51. The vulnerability could be exploited by attacker to trick the users into executing actions of the attacker's choosing.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
  • Microfocus Application Performance Management

    APP
    Microfocus
    9.409.509.51
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2021-22514CRITICAL9.8ten sam produkt

An arbitrary code execution vulnerability exists in Micro Focus Application Performance Management, affecting ...

CVE-2020-11854CRITICAL9.8ten sam produkt

Arbitrary code execution vlnerability in Operation bridge Manager, Application Performance Management and Oper...

CVE-2020-11853HIGH8.8ten sam produkt

Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1.) Operation Bridge Manager a...

CVE-2021-22499MEDIUM4.8ten sam produkt

Persistent Cross-Site scripting vulnerability in Micro Focus Application Performance Management product, affec...

CVE-2021-22502CRITICAL9.8⚠ KEVten sam vendor

Remote Code execution vulnerability in Micro Focus Operation Bridge Reporter (OBR) product, affecting version ...