CVE-2019-3493

Published Apr 29, 2019

Last updated a year ago

Overview

Description: A potential security vulnerability has been identified in Micro Focus Network Automation Software 9.20, 9.21, 10.00, 10.10, 10.20, 10.30, 10.40, 10.50, 2018.05, 2018.08, 2018.11, and Micro Focus Network Operations Management (NOM) all versions. The vulnerability could be remotely exploited to Remote Code Execution.
Source: security@opentext.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 3.0

Type: Primary
Base score: 8.8
Impact score: 5.9
Exploitability score: 2.8
Vector string: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 6.5
Impact score: 6.4
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:microfocus:network_automation:9.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EDC7644B-286B-401D-A9EC-E5E121691495"
          },
          {
            "criteria": "cpe:2.3:a:microfocus:network_automation:9.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4D5681C1-C775-472B-9432-8931757D0B21"
          },
          {
            "criteria": "cpe:2.3:a:microfocus:network_automation:10.00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6A918B90-7408-46A9-B7F7-BD61CDBA03A1"
          },
          {
            "criteria": "cpe:2.3:a:microfocus:network_automation:10.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "172406ED-31E4-42C2-B000-811865DA2293"
          },
          {
            "criteria": "cpe:2.3:a:microfocus:network_automation:10.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5BF2DC96-0F30-4A75-AAD7-730231549525"
          },
          {
            "criteria": "cpe:2.3:a:microfocus:network_automation:10.40:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "42545A63-B5CA-4668-8AD0-4D341AEBE531"
          },
          {
            "criteria": "cpe:2.3:a:microfocus:network_automation:10.50:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EBC2D47A-E969-4E42-95DB-34859638DEA0"
          },
          {
            "criteria": "cpe:2.3:a:microfocus:network_automation:2018.05:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0BE62C5B-6464-4096-9324-5A9CCCFFECAF"
          },
          {
            "criteria": "cpe:2.3:a:microfocus:network_automation:2018.08:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6ECF3470-B13E-4CBB-A853-07879D98EE1D"
          },
          {
            "criteria": "cpe:2.3:a:microfocus:network_automation:2018.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6814B971-E024-4096-86C3-8D4EA13FBE39"
          },
          {
            "criteria": "cpe:2.3:a:microfocus:network_operations_management:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "117AE41F-8187-4FFC-83B4-61F934365C0E"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Configurations

References