Lucene search
K

214 matches found

0day.today
0day.today
added 2021/01/28 12:0 a.m.96 views

Micro Focus UCMDB Remote Code Execution Exploit

This Metasploit module exploits two vulnerabilities, that when chained allow an attacker to achieve unauthenticated remote code execution in Micro Focus UCMDB. UCMDB included in versions 2020.05 and below of Operations Bridge Manager are affected, but this module can probably also be used to...

9.8CVSS9AI score0.7699EPSS
Exploits6
Akamai Blog
Akamai Blog
added 2020/12/07 2:0 p.m.85 views

Add Security Events to Your Monitoring Tools

Real-time monitoring is important in every organization because it enables stakeholders to understand what is happening at any given time and react quickly. There are a lot of systems and devices we can and should monitor using tools such as application performance monitoring, digital performance...

0.4AI score
Exploits0
NVD
NVD
added 2020/10/27 5:15 p.m.36 views

CVE-2020-11854

Arbitrary code execution vlnerability in Operation bridge Manager, Application Performance Management and Operations Bridge containerized vulnerability in Micro Focus products products Operation Bridge Manager, Operation Bridge containerized and Application Performance Management. The vulneravili...

10CVSS9.8AI score0.74232EPSS
Exploits3References5
OSV
OSV
added 2020/10/27 5:15 p.m.2 views

CVE-2020-11854

Arbitrary code execution vlnerability in Operation bridge Manager, Application Performance Management and Operations Bridge containerized vulnerability in Micro Focus products products Operation Bridge Manager, Operation Bridge containerized and Application Performance Management. The vulneravili...

9.8CVSS7.7AI score0.74232EPSS
Exploits3References5
Prion
Prion
added 2020/10/27 5:15 p.m.21 views

Design/Logic Flaw

Arbitrary code execution vlnerability in Operation bridge Manager, Application Performance Management and Operations Bridge containerized vulnerability in Micro Focus products products Operation Bridge Manager, Operation Bridge containerized and Application Performance Management. The vulneravili...

10CVSS9.7AI score0.74232EPSS
Exploits3References5Affected Software3
Cvelist
Cvelist
added 2020/10/27 4:29 p.m.26 views

CVE-2020-11854 Arbitrary code execution vlnerability in Operation bridge Manager, Application Performance Management and Operations Bridge (containerized) products.

Arbitrary code execution vlnerability in Operation bridge Manager, Application Performance Management and Operations Bridge containerized vulnerability in Micro Focus products products Operation Bridge Manager, Operation Bridge containerized and Application Performance Management. The vulneravili...

9.8CVSS9.8AI score0.74232EPSS
Exploits3References5
CVE
CVE
added 2020/10/27 4:29 p.m.120 views

CVE-2020-11854

Summary (CVE-2020-11854) : The Micro Focus UCMDB component is susceptible to remote code execution. Impacted products include: Operation Bridge Manager versions 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, 10.63, 10.62, 10.61, 10.60, 10.12, 10.11, 10.10 and earlier; Operations Bridge (containeriz...

10CVSS9.7AI score0.74232EPSS
In wildExploits3References5Affected Software3
NVD
NVD
added 2020/10/22 9:15 p.m.22 views

CVE-2020-11853

Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1. Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2. Application Performance Management affecting versions : 9.51, 9.50 and 9.40...

8.8CVSS0.7699EPSS
Exploits6References9
OSV
OSV
added 2020/10/22 9:15 p.m.5 views

CVE-2020-11853

Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1. Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2. Application Performance Management affecting versions : 9.51, 9.50 and 9.40...

8.8CVSS7.9AI score0.7699EPSS
Exploits6References9
Prion
Prion
added 2020/10/22 9:15 p.m.26 views

Remote code execution

Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1. Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2. Application Performance Management affecting versions : 9.51, 9.50 and 9.40...

6.5CVSS8.8AI score0.7699EPSS
Exploits6References9Affected Software7
ATTACKERKB
ATTACKERKB
added 2020/10/22 9:15 p.m.2 views

CVE-2020-11853

Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1. Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2. Application Performance Management affecting versions : 9.51, 9.50 and 9.40...

8.8CVSS9.2AI score0.7699EPSS
Exploits6References53Affected Software7
Cvelist
Cvelist
added 2020/10/22 8:37 p.m.54 views

CVE-2020-11853 Arbitrary code execution vulnerability on multiple Micro Focus products

Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1. Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2. Application Performance Management affecting versions : 9.51, 9.50 and 9.40...

8.8CVSS9AI score0.7699EPSS
Exploits6References9
IBM Security Bulletins
IBM Security Bulletins
added 2020/09/22 2:34 a.m.49 views

Security Bulletin: A vulneraqbility in SQLite affects IBM Cloud Application Performance Managment R esponse Time Monitoring Agent (CVE-2020-15358)

Summary In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation. Vulnerability Details CVEID: CVE-2020-15358 DESCRIPTION: SQLite is vulnerable to a heap-based buffe...

5.5CVSS1.5AI score0.01027EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/08/12 3:46 a.m.24 views

Security Bulletin: A vulneraqbility in SQLite affects IBM Cloud Application Performance Managment R esponse Time Monitoring Agent (CVE-2020-9327)

Summary In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger a NULL pointer dereference and segmentation fault because of generated column optimizations. Vulnerability Details CVEID: CVE-2020-9327 DESCRIPTION: SQLite is vulnerable to a denial of service, caused by a NULL pointer...

7.5CVSS1.9AI score0.03683EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/08/12 2:39 a.m.27 views

Security Bulletin: A vulneraqbility in SQLite affects IBM Cloud Application Performance Managment R esponse Time Monitoring Agent (CVE-2020-11655, CVE-2020-11656)

Summary SQLite through 3.31.1 allows attackers to cause a denial of service segmentation fault via a malformed window-function query because the AggInfo object's initialization is mishandled. Or the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belong...

9.8CVSS0.9AI score0.07407EPSS
Exploits1Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/05/13 12:0 a.m.7 views

The vulnerability of the Application Performance Management (EM Request Monitoring) component of the Oracle Enterprise Manager software allows a perpetrator to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the Application Performance Management EM Request Monitoring component of the Oracle Enterprise Manager is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain access to modify, add, or delete data, or to unauthorizedly acce...

6.5CVSS6.6AI score0.01335EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2020/04/15 2:15 p.m.15 views

CVE-2020-2946

Vulnerability in the Application Performance Management product of Oracle Enterprise Manager component: EM Request Monitoring. Supported versions that are affected are 12.1.0.5, 13.2.0.0 and 13.3.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

6.5CVSS5.5AI score0.01335EPSS
Exploits0References1
OSV
OSV
added 2020/04/15 2:15 p.m.4 views

CVE-2020-2946

Vulnerability in the Application Performance Management product of Oracle Enterprise Manager component: EM Request Monitoring. Supported versions that are affected are 12.1.0.5, 13.2.0.0 and 13.3.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

6CVSS6.6AI score0.01335EPSS
Exploits0References1
Prion
Prion
added 2020/04/15 2:15 p.m.12 views

Code injection

Vulnerability in the Application Performance Management product of Oracle Enterprise Manager component: EM Request Monitoring. Supported versions that are affected are 12.1.0.5, 13.2.0.0 and 13.3.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

6.5CVSS5.8AI score0.01335EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/04/15 1:29 p.m.44 views

CVE-2020-2946

CVE-2020-2946 affects Oracle Enterprise Manager’s Application Performance Management component (EM Request Monitoring). Affected supported versions are 12.1.0.5, 13.2.0.0 and 13.3.0.0. The vulnerability allows a high-privileged attacker with network access over HTTP to compromise APM, potentially...

6.5CVSS5.6AI score0.01335EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder