Lucene search

MicrofocusCVELIST:CVE-2018-6498

HistoryAug 30, 2018 - 12:00 a.m.

CVE-2018-6498 Micro Focus Container Deployment Foundation (CDF), Remote Code Execution

2018-08-3000:00:00

microfocus

www.cve.org

8.8 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:H

9.8 High

AI Score

Confidence

High

0.039 Low

EPSS

Percentile

92.1%

JSON

Remote Code Execution in the following products Hybrid Cloud Management Containerized Suite HCM2017.11, HCM2018.02, HCM2018.05, Operations Bridge Containerized Suite 2017.11, 2018.02, 2018.05, Data Center Automation Containerized Suite 2017.01 until 2018.05, Service Management Automation Suite 2017.11, 2018.02, 2018.05 and Network Operations Management (NOM) Suite CDF 2017.11, 2018.02, 2018.05 will allow Remote Code Execution.

CNA Affected

[
  {
    "product": " Network Operations Management (NOM) Suite CDF",
    "vendor": "Micro Focus",
    "versions": [
      {
        "status": "affected",
        "version": "2017.11, 2018.02, 2018.05"
      }
    ]
  },
  {
    "product": "Service Management Automation Suite ",
    "vendor": "Micro Focus",
    "versions": [
      {
        "status": "affected",
        "version": "2017.11, 2018.02, 2018.05"
      }
    ]
  },
  {
    "product": "Data Center Automation Containerized Suite",
    "vendor": "Micro Focus",
    "versions": [
      {
        "status": "affected",
        "version": "2017.01 until 2018.05"
      }
    ]
  },
  {
    "product": "Operations Bridge Containerized Suite",
    "vendor": "Micro Focus",
    "versions": [
      {
        "status": "affected",
        "version": "2017.11, 2018.02, 2018.05"
      }
    ]
  },
  {
    "product": "Hybrid Cloud Management Containerized Suite",
    "vendor": "Micro Focus",
    "versions": [
      {
        "status": "affected",
        "version": "HCM2017.11, HCM2018.02, HCM2018.05"
      }
    ]
  }
]

References

softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03236632

softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03236667

softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03236669

softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03236678

softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03236725

8.8 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:H

9.8 High

AI Score

Confidence

High

0.039 Low

EPSS

Percentile

92.1%

JSON

Related for CVELIST:CVE-2018-6498