Micro Focus UCMDB - Remote Code Execution

Micro Focus UCMDB is susceptible to remote code execution. Impacted products include Operation Bridge Manager versions 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, 10.63,10.62, 10.61, 10.60, 10.12, 10.11, 10.10 and all earlier versions, and Operations Bridge containerized 2020.05, 2019.08, 2019.0...

Micro Focus Operations Bridge Manager <=2020.05 - Remote Code Execution

Micro Focus Operations Bridge Manager in versions 2020.05 and below is vulnerable to remote code execution via UCMDB. The vulnerability allows remote attackers to execute arbitrary code on affected installations of Data Center Automation. An attack requires network access and authentication as a...

CVE-2021-22507

Authentication bypass vulnerability in Micro Focus Operations Bridge Manager affects versions 2019.05, 2019.11, 2020.05 and 2020.10. The vulnerability could allow remote attackers to bypass user authentication and get unauthorized access...

CVE-2021-22504

Arbitrary code execution vulnerability on Micro Focus Operations Bridge Manager product, affecting versions 10.1x, 10.6x, 2018.05, 2018.11, 2019.05, 2019.11, 2020.05, 2020.10. The vulnerability could allow remote attackers to execute arbitrary code on an OBM server...

EUVD-2020-4198

Malware in sbrugna...

EUVD-2025-13930

Malicious code in bioql PyPI...

EUVD-2025-13929

Malicious code in bioql PyPI...

EUVD-2021-9650

Malicious code in bioql PyPI...

CVE-2021-22501

Improper Restriction of XML External Entity Reference vulnerability in OpenText™ Operations Bridge Manager allows Input Data Manipulation. The vulnerability could be exploited to confidential information This issue affects Operations Bridge Manager: 2017.05, 2017.11, 2018.05, 2018.11, 2019.05,...

CVE-2025-3476

Incorrect Authorization vulnerability in OpenText™ Operations Bridge Manager. The vulnerability could allows privilege escalation by authenticated users.This issue affects Operations Bridge Manager: 2023.05, 23.4, 24.2, 24.4...

CVE-2025-3272

Incorrect Authorization vulnerability in OpenText™ Operations Bridge Manager. The vulnerability could allow authenticated users to change their password without providing their old password. This issue affects Operations Bridge Manager: 24.2, 24.4...

CVE-2025-3272

Incorrect Authorization vulnerability in OpenText™ Operations Bridge Manager. The vulnerability could allow authenticated users to change their password without providing their old password. This issue affects Operations Bridge Manager: 24.2, 24.4...

CVE-2025-3476

Incorrect Authorization vulnerability in OpenText™ Operations Bridge Manager. The vulnerability could allows privilege escalation by authenticated users.This issue affects Operations Bridge Manager: 2023.05, 23.4, 24.2, 24.4...

CVE-2025-3272 Incorrect user authorization vulnerability has been identified in Open Text Operations Bridge Manager.

Incorrect Authorization vulnerability in OpenText™ Operations Bridge Manager. The vulnerability could allow authenticated users to change their password without providing their old password. This issue affects Operations Bridge Manager: 24.2, 24.4...

CVE-2025-3272 Incorrect user authorization vulnerability has been identified in Open Text Operations Bridge Manager.

Incorrect Authorization vulnerability in OpenText™ Operations Bridge Manager. The vulnerability could allow authenticated users to change their password without providing their old password. This issue affects Operations Bridge Manager: 24.2, 24.4...

CVE-2025-3476

Incorrect Authorization vulnerability in OpenText™ Operations Bridge Manager. The vulnerability could allows privilege escalation by authenticated users.This issue affects Operations Bridge Manager: 2023.05, 23.4, 24.2, 24.4...

CVE-2025-3476

Incorrect Authorization vulnerability in OpenText™ Operations Bridge Manager. The vulnerability could allows privilege escalation by authenticated users.This issue affects Operations Bridge Manager: 2023.05, 23.4, 24.2, 24.4...

CVE-2025-3476

CVE-2025-3476 targets OpenText Operations Bridge Manager with an Incorrect Authorization flaw that could allow privilege escalation by authenticated users. Affected versions include 2023.05, 23.4, 24.2, and 24.4. Root cause and impact: improper authorization controls enable elevated access for an...

PT-2025-20290 · Opentext · Opentext Operations Bridge Manager

Name of the Vulnerable Software and Affected Versions: OpenText Operations Bridge Manager versions 24.2 through 24.4 Description: The issue allows authenticated users to change their password without providing their old password. Recommendations: For versions 24.2 and 24.4, update to a version th...

OpenText Operations Bridge Manager 安全漏洞

OpenText Operations Bridge Manager is an enterprise activity and performance management software from OpenText Canada. A security vulnerability exists in OpenText Operations Bridge Manager versions 2023.05, 23.4, 24.2, and 24.4, which stems from improper authorization and could result in elevated...