Home

CVE-2020-11853

Description

Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1.) Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2.) Application Performance Management affecting versions : 9.51, 9.50 and 9.40 with uCMDB 10.33 CUP 3 3.) Data Center Automation affected version 2019.11 4.) Operations Bridge (containerized) affecting versions: 2019.11, 2019.08, 2019.05, 2018.11, 2018.08, 2018.05, 2018.02, 2017.11 5.) Universal CMDB affecting version: 2020.05, 2019.11, 2019.05, 2019.02, 2018.11, 2018.08, 2018.05, 11, 10.33, 10.32, 10.31, 10.30 6.) Hybrid Cloud Management affecting version 2020.05 7.) Service Management Automation affecting version 2020.5 and 2020.02. The vulnerability could allow to execute arbitrary code.

Risk Information

Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
92.681

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2020-11853 are affected in OpenText Operations Bridge Manager 2017.11Windows
Vulnerabilities CVE-2020-11853 are affected in OpenText Operations Bridge Manager 2018.02Windows
Vulnerabilities CVE-2020-11853,CVE-2020-11854,CVE-2020-11858,CVE-2021-22504 are affected in OpenText Operations Bridge Manager 2018.05Windows
Vulnerabilities CVE-2020-11853 are affected in OpenText Operations Bridge Manager 2018.08Windows
Vulnerabilities CVE-2020-11853,CVE-2020-11854,CVE-2020-11858,CVE-2021-22504 are affected in OpenText Operations Bridge Manager 2018.11Windows
Multiple Vulnerabilities are affected in OpenText Operations Bridge Manager 2019.05Windows
Vulnerabilities CVE-2020-11853 are affected in OpenText Operations Bridge Manager 2019.08Windows
Multiple Vulnerabilities are affected in OpenText Operations Bridge Manager 2019.11Windows
Multiple Vulnerabilities are affected in OpenText Operations Bridge Manager 2020.05Windows
Vulnerabilities CVE-2020-11853 are affected in universal_cmbd_foundation 2020.05.NCM
CVE-2020-11853NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234