CVE-2019-11661

2019-09-1821:50:05

microfocus

www.cve.org

AI Score

8.1

Confidence

High

EPSS

0.001

Percentile

34.5%

JSON

Allow changes to some table by non-SysAdmin in Micro Focus Service Manager product versions 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. This vulnerability could be exploited to allow unauthorized access and modification of data.

CNA Affected

[
  {
    "product": "Service Manager",
    "vendor": "Micro Focus",
    "versions": [
      {
        "status": "affected",
        "version": "9.30"
      },
      {
        "status": "affected",
        "version": "9.31"
      },
      {
        "status": "affected",
        "version": "9.32"
      },
      {
        "status": "affected",
        "version": "9.33"
      },
      {
        "status": "affected",
        "version": "9.34"
      },
      {
        "status": "affected",
        "version": "9.35"
      },
      {
        "status": "affected",
        "version": "9.40"
      },
      {
        "status": "affected",
        "version": "9.41"
      },
      {
        "status": "affected",
        "version": "9.50"
      },
      {
        "status": "affected",
        "version": "9.51"
      },
      {
        "status": "affected",
        "version": "9.52"
      },
      {
        "status": "affected",
        "version": "9.60"
      },
      {
        "status": "affected",
        "version": "9.61"
      },
      {
        "status": "affected",
        "version": "9.62"
      }
    ]
  }
]

References

softwaresupport.softwaregrp.com/doc/KM03518316