3 matches found
CVE-2019-11653
The CVE-2019-11653 entry affects Micro Focus Content Manager versions 9.1, 9.2, and 9.3 and is described as a Remote Access Control Bypass that could allow manipulation of data stored during another user’s CheckIn request. The connected records (RH, NVD, NVD duplicates) confirm the affected produ...
CVE-2019-11658
The CVE-2019-11658 entry describes Information exposure in Micro Focus Content Manager (versions 9.1, 9.2, 9.3) when configured to use an Oracle database. The underlying issue permits valid system users to access a limited subset of records they would not normally access, particularly in an undis...
CVE-2019-3489
CVE-2019-3489 affects the Web Client component of Micro Focus Content Manager (versions 9.1–9.3) when configured for ADFS authentication. It is an unauthenticated file-upload vulnerability that could allow a remote attacker to upload content to arbitrary locations on the Content Manager server. T...