Solutions Business Manager Security Vulnerabilities and Issues — Solutions Business Manager CVE List

Lucene search

MicrofocusSolutions Business Manager

17 matches found

CVE•added 2021/02/26 4:15 a.m.•73 views

CVE-2019-18947

Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to information disclosure.

3.5CVSS3.6AI score0.00065EPSS

CVE•added 2021/02/26 4:15 a.m.•70 views

CVE-2019-18943

Micro Focus Solutions Business Manager versions prior to 11.7.1 are vulnerable to XML External Entity Processing (XXE) on certain operations.

8CVSS6.9AI score0.00153EPSS

CVE•added 2021/02/26 4:15 a.m.•68 views

CVE-2019-18946

Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to session fixation.

4.8CVSS5.1AI score0.00054EPSS

CVE•added 2021/02/26 4:15 a.m.•67 views

CVE-2019-18945

Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to privilege escalation vulnerability.

8CVSS7.7AI score0.00155EPSS

CVE•added 2021/02/26 4:15 a.m.•66 views

CVE-2019-18944

Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to reflected XSS.

4.9CVSS5.1AI score0.00076EPSS

CVE•added 2021/02/26 4:15 a.m.•61 views

CVE-2019-18942

Micro Focus Solutions Business Manager versions prior to 11.7.1 are vulnerable to stored XSS. The application reflects previously stored user input without encoding.

5.5CVSS5.1AI score0.00071EPSS

CVE•added 2019/06/07 5:29 p.m.•48 views

CVE-2019-3477

Micro Focus Solution Business Manager versions prior to 11.4.2 is susceptible to open redirect.

6.1CVSS6.2AI score0.002EPSS

CVE•added 2019/03/27 6:29 p.m.•40 views

CVE-2018-19643

Information leakage issue in Micro Focus Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions prior to 11.5.

7.5CVSS5.9AI score0.00166EPSS

CVE•added 2019/03/27 5:29 p.m.•38 views

CVE-2018-19641

Unauthenticated remote code execution issue in Micro Focus Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions prior to 11.5.

9.8CVSS8.3AI score0.00632EPSS

CVE•added 2018/06/21 7:29 p.m.•38 views

CVE-2018-7680

Micro Focus Solutions Business Manager versions prior to 11.4 can reflect back HTTP header values.

6.1CVSS6.2AI score0.0024EPSS

CVE•added 2019/02/12 8:29 p.m.•37 views

CVE-2018-19645

An Authentication Bypass issue exists in Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions prior to 11.5.

9.8CVSS9.5AI score0.00425EPSS

CVE•added 2018/06/21 7:29 p.m.•32 views

CVE-2018-7681

Micro Focus Solutions Business Manager versions prior to 11.4 allows JavaScript to be embedded in URLs placed in "Favorites" folder. If the user has certain administrative privileges then this vulnerability can impact other users in the system.

4.8CVSS5.1AI score0.00207EPSS

CVE•added 2019/03/27 6:29 p.m.•31 views

CVE-2018-19644

Reflected cross site script issue in Micro Focus Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions prior to 11.5.

6.1CVSS5.9AI score0.00188EPSS

CVE•added 2018/06/21 7:29 p.m.•30 views

CVE-2018-7679

Micro Focus Solutions Business Manager versions prior to 11.4 when ASP.NET is configured with execute permission on the virtual directories and does not validate the contents of user avatar images, could lead to remote code execution.

9.8CVSS9.6AI score0.01778EPSS

CVE•added 2018/06/22 10:29 p.m.•28 views

CVE-2018-7682

Micro Focus Solutions Business Manager versions prior to 11.4 allows a user to invoke SBM RESTful services across domains.

6.5CVSS6.3AI score0.00273EPSS

CVE•added 2019/03/27 5:29 p.m.•27 views

CVE-2018-19642

Denial of service issue in Micro Focus Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions prior to 11.5.

7.5CVSS6.2AI score0.00165EPSS

CVE•added 2018/06/21 7:29 p.m.•27 views

CVE-2018-7683

Micro Focus Solutions Business Manager versions prior to 11.4 might reveal certain sensitive information in server log files.

7.5CVSS7.2AI score0.00316EPSS