CVE-2018-6497

The CVE-2018-6497 issue affects Micro Focus UCMBD Server (versions 10.20–11.0) and CMS Server 2018.05 BACKGROUND. The root concern is a CSRF vulnerability that could enable remote unsafe deserialization and subsequent unauthorized operations. Affected components include UCMBD Server’s content pac...

CVE-2018-6495

The CVE-2018-6495 entry describes a Cross-Site Scripting (XSS) vulnerability in Micro Focus Universal CMDB (versions 10.20–10.33, 11.0), CMS (4.10–4.15.1), and UCMDB Browser (4.10–4.15.1). The flaw is exploitable remotely to inject script or HTML. Connected documents corroborate product scope and...