CVE-2018-7681

2018-06-2000:00:00

microfocus

www.cve.org

5.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.9%

JSON

Micro Focus Solutions Business Manager versions prior to 11.4 allows JavaScript to be embedded in URLs placed in “Favorites” folder. If the user has certain administrative privileges then this vulnerability can impact other users in the system.

CNA Affected

[
  {
    "product": "Solutions Business Manager 11.4",
    "vendor": "Micro Focus",
    "versions": [
      {
        "status": "affected",
        "version": "Solutions Business Manager versions prior to 11.4"
      }
    ]
  }
]

References

help.serena.com/doc_center/sbm/ver11_4/sbm_release_notes.htm