RSS   Vulnerabilities for 'Content manager'   RSS

2019-08-30
 
CVE-2019-11658

CWE-200
 

 
Information exposure in Micro Focus Content Manager, versions 9.1, 9.2 and 9.3. This vulnerability when configured to use an Oracle database, allows valid system users to gain access to a limited subset of records they would not normally be able to access when the system is in an undisclosed abnormal state.

 
2019-08-07
 
CVE-2019-11653

CWE-284
 

 
Remote Access Control Bypass in Micro Focus Content Manager. versions 9.1, 9.2, 9.3. The vulnerability could be exploited to manipulate data stored during another user?s CheckIn request.

 
2019-04-01
 
CVE-2019-3489

CWE-434
 

 
An unauthenticated file upload vulnerability has been identified in the Web Client component of Micro Focus Content Manager 9.1, 9.2, and 9.3 when configured to use the ADFS authentication method. The vulnerability could be exploited by an unauthenticated remote attacker to upload content to arbitrary locations on the Content Manager server.

 

 >>> Vendor: Microfocus 68 Products
Directory server
Enterprise server
Netware
Client
Cobol
Edirectory
Rumba
Open enterprise server
Identity manager
Access manager
Service manager
Visibroker
Operations agent
Project and portfolio management center
Reflection for the web
Data protector
Network automation
Connected backup
Fortify software security center
Arcsight logger
Arcsight enterprise security manager
Verastream host integrator
Unified functional testing
Operations manager i
Service virtualization
Network virtualization
FILR
Content manager
Arcsight management center
Rumba ftp
Host access management and security server
Reflection security gateway
Reflection zfe
VIBE
Enterprise server monitor and control
Enterprise developer
Arcsight enterprise security manager express
Application performance management
Ucmdb configuration manager
Bi-directional driver
Project and portfolio management
Fortify audit workbench
Universal cmdb foundation software
Cms server
Universal cmdb
Universal cmdb browser
Data center automation
Hybrid cloud management
Network operations management
Operations bridge
Service management automation
Real user monitoring
Netiq edirectory
Solutions business manager
Netiq self service password reset
Verastream host integrato
Service manager chat server
Service manager chat service
Acutoweb
Service manager automation
Secure messaging gateway
Operation bridge reporter
IDOL
Operations bridge manager
Application automation tools
Netiq advanced authentication
Voltage securemail
Netiq access manager


Copyright 2024, cxsecurity.com

 

Back to Top