CVE-2020-11858 — Focus Operation Bridge Manager vulnerability

3 documents3 sources

Severity

7.8HIGHNVD

EPSS

1.8%

top 17.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Micro Focus Operation Bridge Manager Microfocus Operations Bridge Manager Micro Focus Operation Bridge +1 more

Timeline

PublishedOct 27

Latest updateMay 24

Description

Code execution with escalated privileges vulnerability in Micro Focus products Operation Bridge Manager and Operation Bridge (containerized). The vulneravility affects: 1.) Operation Bridge Manager versions: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, 10.63,10.62, 10.61, 10.60, 10.12, 10.11, 10.10 and all earlier versions. 2.) Operations Bridge (containerized) versions: 2020.05, 2019.08, 2019.05, 2018.11, 2018.08, 2018.05. 2018.02 and 2017.11. The vulnerability could allow local attackers to ex…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages4 packages

▶NVDmicrofocus/operations_bridge_manager10.10+11

▶CVEListV5micro_focus/operation_bridge_managerunspecified — 10.10+11

▶NVDmicrofocus/operations_bridge8 versions+7

▶CVEListV5micro_focus/operation_bridge8 versions+7

🔴Vulnerability Details

GHSA

GHSA-54r5-wg44-vhhq: Code execution with escalated privileges vulnerability in Micro Focus products Operation Bridge Manager and Operation Bridge (containerized)↗2022-05-24

▶

CVEList

Code execution with escalated privilegesn vlnerability in Operation bridge Manager and Operations Bridge (containerized) products.↗2020-10-27

▶