CVE-2018-18591 MEDIUM

CVE-2018-18591: MFSBGN03823 rev.1 - Micro Focus Service Manager, unauthorized disclosure of data

Vendor Micro Focus
Product Micro Focus Service Manager
Published November 13, 2018
Last update September 17, 2024

CVSS base score

6.8/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction Required
Confidentiality High
Integrity None

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N

What the vulnerability does

01Description

A potential unauthorized disclosure of data vulnerability has been identified in Micro Focus Service Manager versions: 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51. The vulnerability could be exploited to release unauthorized disclosure of data.

Key dates

02Disclosure timeline

November 13, 2018 CVE published
September 17, 2024 Record updated