Lucene search

MicrofocusCVELIST:CVE-2018-6491

HistoryApr 23, 2018 - 9:00 p.m.

CVE-2018-6491 MFSBGN03803 rev.1 - UCMDB, Installation File Access Control Privilege Escalation Vulnerability

2018-04-2321:00:00

microfocus

www.cve.org

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.005

Percentile

76.7%

JSON

Local Escalation of Privilege vulnerability to Micro Focus Universal CMDB, versions 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, 10.33, 11.00. The vulnerability could be remotely exploited to Local Escalation of Privilege.

CNA Affected

[
  {
    "product": "Universal CMDB",
    "vendor": "Micro Focus",
    "versions": [
      {
        "status": "affected",
        "version": "10.20, 10.21, 10.22, 10.30, 10.31, 10.32, 10.33, 11.00"
      }
    ]
  }
]

References

www.securitytracker.com/id/1040680

softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03141180

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.005

Percentile

76.7%

JSON

Related for CVELIST:CVE-2018-6491