CVE-2021-38125Operations Bridge vulnerability

3 documents3 sources
Severity
9.8CRITICALNVD
EPSS
1.7%
top 17.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microfocus Operations Bridge
Timeline
PublishedApr 11
Latest updateApr 12

Description

Unauthenticated remote code execution in Micro Focus Operations Bridge containerized, affecting versions 2021.05, 2021.08, and newer versions of Micro Focus Operations Bridge containerized if the deployment was upgraded from 2021.05 or 2021.08. The vulnerability could be exploited to unauthenticated remote code execution.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-5r8m-442m-m7hq: Unauthenticated remote code execution in Micro Focus Operations Bridge containerized, affecting versions 20212022-04-12
CVEList
CVE-2021-38125: Unauthenticated remote code execution in Micro Focus Operations Bridge containerized, affecting versions 20212022-04-11
CVE-2021-38125 — Operations Bridge vulnerability | cvebase