CVE-2018-6491Focus Universal Cmdb vulnerability

3 documents3 sources
Severity
9.8CRITICALNVD
CNA8.1
EPSS
0.1%
top 66.44%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Micro Focus Universal CmdbMicrofocus Ucmdb Configuration Manager
Timeline
PublishedApr 24
Latest updateMay 13

Description

Local Escalation of Privilege vulnerability to Micro Focus Universal CMDB, versions 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, 10.33, 11.00. The vulnerability could be remotely exploited to Local Escalation of Privilege.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

CVEListV5micro_focus/universal_cmdb10.20, 10.21, 10.22, 10.30, 10.31, 10.32, 10.33, 11.00

🔴Vulnerability Details

2
GHSA
GHSA-5qwv-v7xm-m2h7: Local Escalation of Privilege vulnerability to Micro Focus Universal CMDB, versions 102022-05-13
CVEList
MFSBGN03803 rev.1 - UCMDB, Installation File Access Control Privilege Escalation Vulnerability2018-04-23
CVE-2018-6491 — Focus Universal Cmdb vulnerability | cvebase