Service Bridge Security Vulnerabilities
A privilege escalation vulnerability was reported in Lenovo Service Bridge prior to version 5.0.2.17 that could allow operating system commands to be executed if a specially crafted link is...
7.5CVSS
7.3AI Score
0.001EPSS
Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1.) Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2.) Application Performance Management affecting versions : 9.51, 9.50 and 9.40.....
8.8CVSS
8.8AI Score
0.837EPSS
Incorrect Authorization vulnerability in Micro Focus Container Deployment Foundation component affects products: - Hybrid Cloud Management. Versions 2018.05 to 2019.11. - ArcSight Investigate. versions 2.4.0, 3.0.0 and 3.1.0. - ArcSight Transformation Hub. versions 3.0.0, 3.1.0, 3.2.0. - ArcSight.....
10CVSS
9.2AI Score
0.021EPSS
A vulnerability reported in Lenovo Service Bridge before version 4.1.0.1 could allow unencrypted downloads over...
7.5CVSS
8.6AI Score
0.002EPSS
A vulnerability reported in Lenovo Service Bridge before version 4.1.0.1 could allow remote code...
9.8CVSS
9.7AI Score
0.014EPSS
A vulnerability reported in Lenovo Service Bridge before version 4.1.0.1 could allow cross-site request...
8.8CVSS
9.1AI Score
0.001EPSS
A vulnerability reported in Lenovo Service Bridge before version 4.1.0.1 could allow remote code...
9.8CVSS
9.7AI Score
0.014EPSS
On BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, 12.1.0-12.1.3.6, 13.0.0-13.1.1.1, and 14.0.0-14.0.0.2, under certain conditions, hardware systems with a High-Speed Bridge and using non-default Layer 2 forwarding configurations may experience a lockup of the High-Speed...
6.8CVSS
6.6AI Score
0.001EPSS
Remote Code Execution in the following products Hybrid Cloud Management Containerized Suite HCM2017.11, HCM2018.02, HCM2018.05, Operations Bridge Containerized Suite 2017.11, 2018.02, 2018.05, Data Center Automation Containerized Suite 2017.01 until 2018.05, Service Management Automation Suite...
9.8CVSS
9.6AI Score
0.039EPSS
Remote Code Execution in the following products Hybrid Cloud Management Containerized Suite HCM2017.11, HCM2018.02, HCM2018.05, Operations Bridge Containerized Suite 2017.11, 2018.02, 2018.05, Data Center Automation Containerized Suite 2017.01 until 2018.05, Service Management Automation Suite...
9.8CVSS
9.6AI Score
0.055EPSS
In Lenovo Service Bridge before version 4, a user with local privileges on a system could execute code with administrative...
7.8CVSS
7.6AI Score
0.0004EPSS
A cross-site request forgery vulnerability in Lenovo Service Bridge before version 4 could be exploited by an attacker with access to the DHCP server used by the system where LSB is...
8.8CVSS
7.8AI Score
0.001EPSS
In Lenovo Service Bridge before version 4, an insecure HTTP connection is used by LSB to send system serial number, machine type and model and product name to Lenovo's...
7.5CVSS
7.4AI Score
0.002EPSS
In Lenovo Service Bridge before version 4, a bug found in the signature verification logic of the code signing certificate could be exploited by an attacker to insert a forged code signing...
7.5CVSS
7.4AI Score
0.001EPSS