Microfocus Service Management Automation vulnerabilities
4 known vulnerabilities affecting microfocus/service_management_automation.
Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH1
Vulnerabilities
Page 1 of 1
CVE-2020-11844CRITICALCVSS 9.8v2018.05v2018.08+6 more2020-05-29
CVE-2020-11844 [CRITICAL] CWE-863 CVE-2020-11844: Incorrect Authorization vulnerability in Micro Focus Container Deployment Foundation component affec
Incorrect Authorization vulnerability in Micro Focus Container Deployment Foundation component affects products: - Hybrid Cloud Management. Versions 2018.05 to 2019.11. - ArcSight Investigate. versions 2.4.0, 3.0.0 and 3.1.0. - ArcSight Transformation Hub. versions 3.0.0, 3.1.0, 3.2.0. - ArcSight Interset. version 6.0.0. - ArcSight ESM (when ArcSi
nvd
CVE-2019-5736HIGHCVSS 8.6PoCv2018.02v2018.05+2 more2019-02-11
CVE-2019-5736 [HIGH] CWE-78 CVE-2019-5736: runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overw
runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new container with an attacker-controlled image, or (2) an existing container, to whi
nvd
CVE-2018-6499CRITICALCVSS 9.8v2017.11v2018.02+1 more2018-08-30
CVE-2018-6499 [HIGH] CWE-94 CVE-2018-6499: Remote Code Execution in the following products Hybrid Cloud Management Containerized Suite HCM2017.
Remote Code Execution in the following products Hybrid Cloud Management Containerized Suite HCM2017.11, HCM2018.02, HCM2018.05, Operations Bridge Containerized Suite 2017.11, 2018.02, 2018.05, Data Center Automation Containerized Suite 2017.01 until 2018.05, Service Management Automation Suite 2017.11, 2018.02, 2018.05, Service Virtualization (SV) with f
nvd
CVE-2018-6498CRITICALCVSS 9.8v2017.11v2018.02+1 more2018-08-30
CVE-2018-6498 [HIGH] CWE-94 CVE-2018-6498: Remote Code Execution in the following products Hybrid Cloud Management Containerized Suite HCM2017.
Remote Code Execution in the following products Hybrid Cloud Management Containerized Suite HCM2017.11, HCM2018.02, HCM2018.05, Operations Bridge Containerized Suite 2017.11, 2018.02, 2018.05, Data Center Automation Containerized Suite 2017.01 until 2018.05, Service Management Automation Suite 2017.11, 2018.02, 2018.05 and Network Operations Management (
nvd