Micro Focus Email

Send E-mail

Self-Solve Knowledge Search

We found 26 results
vulnerability summary a potential cross site scripting (xss) vulnerability has been identified in service manager. the vulnerability could be exploited to allow remote attackers to inject arbitrary web script or html.
security bulletins any; service manager 9.50 9.51 9.52 9.60 9.61 9.62 9.63 ;
security bulletins
public
published
Created: 2020-05-18
Modified: 2020-05-18
a vulnerability in apache tomcat was addressed by service manager. the vulnerability could be exploited to file content disclosure of the web application or remote code execution. when using the apache jserv protocol (ajp), care must be taken when trusting incoming connections to apache tomcat. tomcat treats ajp connections as having higher trust than, for example, a similar http connection. if such connections are available to an attacker, they can be exploited in ways that may be surprising. for more details, please reference the cve details at the following link. https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-1938
security bulletins any; service manager 9.40 9.41 9.50 9.51 9.52 9.60 9.61 9.62 9.63 9.64 ;
security bulletins
public
published
Created: 2020-04-22
Modified: 2020-04-22
a potential vulnerability has been identified in service manager. the vulnerability could be exploited to allow exposure of configuration data.
security bulletins any; service manager 9.40 9.41 9.50 9.51 9.52 9.60 9.61 9.62 9.63 ;
security bulletins
public
published
Created: 2020-03-16
Modified: 2020-03-16
a potential vulnerability has been identified in service manager. the vulnerability could be exploited to allow unauthorized access to configuration data.
security bulletins any; service manager 9.50 9.51 9.52 9.60 9.61 9.62 ;
security bulletins
public
published
Created: 2020-03-16
Modified: 2020-03-16
a potential vulnerability has been identified in service manager release control. the vulnerability allows improper restriction of rendered ui layers or frames in release control which may result in the ability of malicious users to perform ui redress attacks.
security bulletins any; service manager 9.50 9.60 ;
security bulletins
public
published
Created: 2020-03-02
Modified: 2020-03-04
potential vulnerabilities have been identified in service manager: * can be exploited to allow unauthorized access and modification of data. * can be exploited in some special cases to allow information exposure through an error message. * can be exploited to allow sensitive data exposure. * the vulnerability could be exploited to allow a denial of service and sensitive data exposure. * the vulnerability could be exploited to allow insecure deserialization of untrusted data.
security bulletins any; service manager 9.30 9.31 9.32 9.33 9.34 9.35 9.40 9.41 9.50 9.51 9.52 9.60 9.61 9.62 ;
security bulletins
public
published
Created: 2019-09-09
Modified: 2019-10-18
vulnerability summary a potential vulnerability has been identified in service manager. the vulnerability could be exploited to prevent the verification of windows .exe product files provided by micro focus.
security bulletins any; service manager 9.62;
security bulletins
public
published
Created: 2019-09-10
Modified: 2019-09-10
a potential vulnerability has been identified in service manager. the vulnerability could be exploited to allow unauthorized modification of data.
security bulletins any; service manager 9.60 9.61 9.62 ;
security bulletins
public
published
Created: 2019-09-06
Modified: 2019-09-06
a potential vulnerability has been identified in service manager. the vulnerability could be exploited to allow access to sensitive data in client-side.
security bulletins any; service manager 9.30 9.31 9.32 9.33 9.34 9.35 9.40 9.41 9.50 9.51 9.52 9.60 9.61 9.62 ;
security bulletins
public
published
Created: 2019-09-06
Modified: 2019-09-06
a potential vulnerability has been identified in service manager. the vulnerability could be exploited to allow unauthorized access to private data.
security bulletins any; service manager 9.41 9.50 9.51 9.52 9.60 9.61 9.62 ;
security bulletins
public
published
Created: 2019-09-06
Modified: 2019-09-06

Document Type

   

Products

   
  • hpe propel third party adapters (1)
  • sm service request catalog (1)
  • universal cmdb config mgr (1)
  • universal discovery for oracle lms (1)

Version

   

Workflow Status

   

Security Level

   

Operating System

   

Language

   

Date Range

Start Date:

End Date: