Home

CVE-2021-22504

Description

Arbitrary code execution vulnerability on Micro Focus Operations Bridge Manager product, affecting versions 10.1x, 10.6x, 2018.05, 2018.11, 2019.05, 2019.11, 2020.05, 2020.10. The vulnerability could allow remote attackers to execute arbitrary code on an OBM server.

Risk Information

Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
3.018

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2020-11853,CVE-2020-11854,CVE-2020-11858,CVE-2021-22504 are affected in OpenText Operations Bridge Manager 2018.05Windows
Vulnerabilities CVE-2020-11853,CVE-2020-11854,CVE-2020-11858,CVE-2021-22504 are affected in OpenText Operations Bridge Manager 2018.11Windows
Multiple Vulnerabilities are affected in OpenText Operations Bridge Manager 2019.05Windows
Multiple Vulnerabilities are affected in OpenText Operations Bridge Manager 2019.11Windows
Multiple Vulnerabilities are affected in OpenText Operations Bridge Manager 2020.05Windows
Vulnerabilities CVE-2020-11854,CVE-2020-11858,CVE-2021-22504 are affected in OpenText Operations Bridge Manager 10.10Windows
Vulnerabilities CVE-2020-11854,CVE-2020-11858,CVE-2021-22504 are affected in OpenText Operations Bridge Manager 10.11Windows
Vulnerabilities CVE-2020-11854,CVE-2020-11858,CVE-2021-22504 are affected in OpenText Operations Bridge Manager 10.12Windows
Vulnerabilities CVE-2020-11854,CVE-2020-11858,CVE-2021-22504 are affected in OpenText Operations Bridge Manager 10.60Windows
Vulnerabilities CVE-2020-11854,CVE-2020-11858,CVE-2021-22504 are affected in OpenText Operations Bridge Manager 10.61Windows
Vulnerabilities CVE-2020-11854,CVE-2020-11858,CVE-2021-22504 are affected in OpenText Operations Bridge Manager 10.62Windows
Vulnerabilities CVE-2020-11854,CVE-2020-11858,CVE-2021-22504 are affected in OpenText Operations Bridge Manager 10.63Windows
Vulnerabilities CVE-2021-22504,CVE-2021-22507,CVE-2022-38754 are affected in OpenText Operations Bridge Manager 2020.10Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234