HIGH🇵🇱 Wersja polska

CVE-2020-11855

CVSS 7.8v3.1pub. 2020-09-22upd. 2024-11-21

An Authorization Bypass vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier. The vulnerability could allow local attackers on the OBR host to execute code with escalated privileges.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Microfocus Operation Bridge Reporter

    APP
    Microfocus
    ≤ 10.40
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2021-22502CRITICAL9.8⚠ KEVten sam produkt

Remote Code execution vulnerability in Micro Focus Operation Bridge Reporter (OBR) product, affecting version ...

CVE-2020-11856CRITICAL9.8ten sam produkt

Arbitrary code execution vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and e...

CVE-2020-11857CRITICAL9.8ten sam produkt

An Authorization Bypass vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and ea...

CVE-2023-4501CRITICAL9.8ten sam vendor

User authentication with username and password credentials is ineffective in OpenText (Micro Focus) Visual COB...

CVE-2023-24470CRITICAL9.1ten sam vendor

Potential XML External Entity Injection in ArcSight Logger versions prior to 7.3.0.