Solutions Business Manager Security Vulnerabilities and Issues — Solutions Business Manager CVE List

Lucene search

MicrofocusSolutions Business Manager

5 matches found

CVE•added 2018/06/21 7:29 p.m.•38 views

CVE-2018-7680

Micro Focus Solutions Business Manager versions prior to 11.4 can reflect back HTTP header values.

6.1CVSS6.2AI score0.0024EPSS

CVE•added 2018/06/21 7:29 p.m.•32 views

CVE-2018-7681

Micro Focus Solutions Business Manager versions prior to 11.4 allows JavaScript to be embedded in URLs placed in "Favorites" folder. If the user has certain administrative privileges then this vulnerability can impact other users in the system.

4.8CVSS5.1AI score0.00207EPSS

CVE•added 2018/06/21 7:29 p.m.•30 views

CVE-2018-7679

Micro Focus Solutions Business Manager versions prior to 11.4 when ASP.NET is configured with execute permission on the virtual directories and does not validate the contents of user avatar images, could lead to remote code execution.

9.8CVSS9.6AI score0.01778EPSS

CVE•added 2018/06/22 10:29 p.m.•28 views

CVE-2018-7682

Micro Focus Solutions Business Manager versions prior to 11.4 allows a user to invoke SBM RESTful services across domains.

6.5CVSS6.3AI score0.00273EPSS

CVE•added 2018/06/21 7:29 p.m.•27 views

CVE-2018-7683

Micro Focus Solutions Business Manager versions prior to 11.4 might reveal certain sensitive information in server log files.

7.5CVSS7.2AI score0.00316EPSS