Vulnerabilities (CVE)

Vendor filter

Microfocus Subscribe

Product filter

Enterprise Developer Subscribe

Filter

8 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-11651 1 Microfocus 2 Enterprise Developer, Enterprise Server 2019-10-10 4.3
Reflected XSS on Micro Focus Enterprise Developer and Enterprise Server, all versions prior to version 3.0 Patch Update 20, version 4.0 Patch Update 12, and version 5.0 Patch Update 2. The vulnerability could be exploited to redirect a user to a...
CVE-2018-12469 1 Microfocus 2 Enterprise Developer, Enterprise Server 2019-10-09 5.0
Incorrect handling of an invalid value for an HTTP request parameter by Directory Server (aka Enterprise Server Administration web UI) in Micro Focus Enterprise Developer and Enterprise Server 2.3 Update 2 and earlier, 3.0 before Patch Update 12,...
CVE-2017-7424 1 Microfocus 2 Enterprise Server, Enterprise Developer 2019-10-09 4.0
A Path Traversal (CWE-22) vulnerability in esfadmingui in Micro Focus Enterprise Developer and Enterprise Server 2.3, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote authenticated users to download arbitrary files...
CVE-2017-7423 1 Microfocus 2 Enterprise Server, Enterprise Developer 2019-10-09 6.8
A Cross-Site Request Forgery (CWE-352) vulnerability in esfadmingui in Micro Focus Enterprise Developer and Enterprise Server 2.3, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote unauthenticated attackers to forge...
CVE-2017-7422 1 Microfocus 2 Enterprise Server, Enterprise Developer 2019-10-09 3.5
Reflected and stored Cross-Site Scripting (XSS, CWE-79) vulnerabilities in esfadmingui in Micro Focus Enterprise Developer and Enterprise Server 2.3, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allow remote authenticated...
CVE-2017-7421 1 Microfocus 4 Enterprise Server Monitor And Control, Enterprise Server, Enterprise Developer and 1 more 2019-10-09 4.3
Reflected and stored Cross-Site Scripting (XSS, CWE-79) vulnerabilities in Directory Server (aka Enterprise Server Administration web UI) and ESMAC (aka Enterprise Server Monitor and Control) in Micro Focus Enterprise Developer and Enterprise...
CVE-2017-7420 1 Microfocus 3 Enterprise Server Monitor And Control, Enterprise Server, Enterprise Developer 2019-10-09 7.5
An Authentication Bypass (CWE-287) vulnerability in ESMAC (aka Enterprise Server Monitor and Control) in Micro Focus Enterprise Developer and Enterprise Server 2.3 and earlier, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows...
CVE-2017-5187 1 Microfocus 4 Enterprise Server Monitor And Control, Enterprise Server, Enterprise Developer and 1 more 2019-10-09 6.8
A Cross-Site Request Forgery (CWE-352) vulnerability in Directory Server (aka Enterprise Server Administration web UI) in Micro Focus Enterprise Developer and Enterprise Server 2.3 and earlier, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2...