Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Universal_cmbd_foundation
(Hp)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 4 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-10-22 | CVE-2020-11853 | Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1.) Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2.) Application Performance Management affecting versions : 9.51, 9.50 and 9.40 with uCMDB 10.33 CUP 3 3.) Data Center Automation affected version 2019.11 4.) Operations Bridge (containerized) affecting versions: 2019.11, 2019.08, 2019.05, 2018.11, 2018.08, 2018.05, 2018.02,... | Universal_cmbd_foundation, Application_performance_management, Data_center_automation, Hybrid_cloud_management, Operation_bridge_manager, Operations_bridge_manager, Service_manager_automation | 8.8 | ||
| 2016-06-08 | CVE-2016-4368 | HPE Universal CMDB 10.0 through 10.21, Universal CMDB Configuration Manager 10.0 through 10.21, and Universal Discovery 10.0 through 10.21 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library. | Universal_cmbd_configuration_manager, Universal_cmbd_foundation, Universal_discovery | 9.8 | ||
| 2016-06-08 | CVE-2016-4367 | The Universal Discovery component in HPE Universal CMDB 10.0, 10.01, 10.10, 10.11, 10.20, and 10.21 allows remote attackers to obtain sensitive information via unspecified vectors. | Universal_cmbd_foundation | 7.5 | ||
| 2016-04-12 | CVE-2016-2001 | HPE Universal CMDB Foundation 10.0, 10.01, 10.10, 10.11, and 10.20 allows remote attackers to obtain sensitive information or conduct URL redirection attacks via unspecified vectors. | Universal_cmbd_foundation | 7.4 |