Authentication flaw

2017-08-2115:29:00

PRIOn knowledge base

www.prio-n.com

9.3 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.9%

JSON

An Authentication Bypass (CWE-287) vulnerability in ESMAC (aka Enterprise Server Monitor and Control) in Micro Focus Enterprise Developer and Enterprise Server 2.3 and earlier, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote unauthenticated attackers to view and alter configuration information and alter the state of the running product (CWE-275).

CPENameOperatorVersion
enterprise_developereq2.3 update2
enterprise_developereq2.3
enterprise_developereq2.3 update1
enterprise_servereq2.3 update1
enterprise_servereq2.3 update2
enterprise_serverle2.3

Name	Operator	Version
enterprise_developer	eq	2.3 update2
enterprise_developer	eq	2.3
enterprise_developer	eq	2.3 update1
enterprise_server	eq	2.3 update1
enterprise_server	eq	2.3 update2
enterprise_server	le	2.3