Micro Focus Email

Send E-mail

Self-Solve Knowledge Search

We found 5536 results
operations bridge manager 10.63;
knowledge documents
customer entitled
candidate
Created: 2020-04-02
Modified: 2020-04-02
operations bridge manager 2019.05;
known problems
customer entitled
published,action
Created: 2019-10-21
Modified: 2020-04-01
a vulnerability in apache tomcat was addressed by operations bridge manager. the vulnerability could be exploited to file content disclosure of the web application or remote code execution. when using the apache jserv protocol (ajp), care must be taken when trusting incoming connections to apache tomcat. tomcat treats ajp connections as having higher trust than, for example, a similar http connection. if such connections are available to an attacker, they can be exploited in ways that may be surprising. in apache tomcat 9.0.0.m1 to 9.0.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99, tomcat shipped with an ajp connector enabled by default that listened on all configured ip addresses. it was expected (and recommended in the security guide) that this connector would be disabled if not required. this vulnerability report identified a mechanism that allowed: - returning arbitrary files from anywhere in the web application - processing any file in the web application as a jsp further, if the web application allowed file upload and stored those files within the web application (or the attacker was able to control the content of the web application by some other means) then this, along with the ability to process a file as a jsp, made remote code execution possible. it is important to note that mitigation is only required if an ajp port is accessible to untrusted users. users wishing to take a defense-in-depth approach and block the vector that permits returning arbitrary files and execution as jsp may upgrade to apache tomcat 9.0.31, 8.5.51 or 7.0.100 or later. a number of changes were made to the default ajp connector configuration in 9.0.31 to harden the default configuration. it is likely that users upgrading to 9.0.31, 8.5.51 or 7.0.100 or later will need to make small changes to their configurations. https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-1938
operations bridge manager 10.12 10.60 10.61 10.62 10.63 2018.05 2018.11 2019.05 2019.11 ; security bulletins any;
security bulletins
public
published
Created: 2020-03-31
Modified: 2020-03-31
operations bridge manager
discussion forum
public
published
Created: 2020-03-31
Modified: 2020-03-31
operations bridge manager
discussion forum
public
published
Created: 2020-03-30
Modified: 2020-03-30
cannot access the rtsm web service wsdl file with the load balancer or gw url.
operations bridge manager 10.63;
knowledge documents
customer entitled
published
Created: 2020-03-09
Modified: 2020-03-30
operations bridge manager 10.60 2019.05 ;
known problems
customer entitled
published,action
Created: 2018-08-16
Modified: 2020-03-27
operations bridge manager
discussion forum
public
published
Created: 2020-03-27
Modified: 2020-03-27
operations bridge manager
discussion forum
public
published
Created: 2020-03-26
Modified: 2020-03-26
operations bridge manager 2018.05 2019.05 ;
known problems
customer entitled
published,action
Created: 2019-04-26
Modified: 2020-03-26

Document Type

   

Products

   
  • operations bridge manager (5536)
  • application performance management (bac) (820)
  • operations orchestration (18)
  • operations bridge containerized (13)
  • operations manager for windows (12)
  • omi business value dashboard (11)
  • operations manager for unix (7)
  • service health analyzer (6)
  • network node manager i series core (4)
  • operations bridge analytics (4)
  • operations bridge reporter (4)
  • business process insight (3)
  • enterprise collaboration (3)
  • operations manager for linux (3)
  • arcsight logger software (2)
  • operations manager dependency mapping automation (2)
  • smart plug-in for oracle (2)
  • arcsight enterprise security manager (1)
  • bac operations management (1)
  • bsm connector for nagios (1)
  • business process monitor (1)
  • cloud service automation (1)
  • database and middleware automation (1)
  • network node manager ispi for net (1)
  • network node manager ispi for performance (1)
  • network node manager secure polling agent (1)
  • network node manager spi for advanced routing (1)
  • network node manager spi for alcatel ip telephony (1)
  • network node manager spi for avaya ip telephony (1)
  • network node manager spi for cisco ip telephony (1)
  • network node manager spi for ip multicast (1)
  • network node manager spi for mpls vpn (1)
  • network node manager spi for snmpv3 (1)
  • network operations management express (1)
  • network operations management premium (1)
  • network operations management ultimate (1)
  • operations integration for system insight manager (1)
  • ops connector for microsoft scom (1)
  • smart plug-in for databases (1)
  • smart plug-in for ibm db2 (1)
  • smart plug-in for informix (1)
  • smart plug-in for microsoft active directory (1)
  • smart plug-in for microsoft enterprise servers (1)
  • smart plug-in for microsoft exchange server (1)
  • smart plug-in for microsoft sql server (1)
  • smart plug-in for microsoft virtual server (1)
  • smart plug-in for oracle application server (1)
  • smart plug-in for peoplesoft (1)
  • smart plug-in for remedy action request system (1)
  • smart plug-in for storage essentials (1)
  • smart plug-in for sybase (1)
  • smart plug-in for unix os (1)
  • smart plug-in for webservers (1)
  • smart plug-in for windows os (1)
  • storage operations manager (1)
  • universal discovery for oracle lms (1)

Version

   

Workflow Status

   

Security Level

   

Operating System

   

Language

   

Date Range

Start Date:

End Date: