Overview
- Description
- Unauthenticated remote code execution in Micro Focus Operations Bridge containerized, affecting versions 2021.05, 2021.08, and newer versions of Micro Focus Operations Bridge containerized if the deployment was upgraded from 2021.05 or 2021.08. The vulnerability could be exploited to unauthenticated remote code execution.
- Source
- security@opentext.com
- NVD status
- Modified
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
CVSS 2.0
- Type
- Primary
- Base score
- 6.8
- Impact score
- 6.4
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microfocus:operations_bridge:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6994AC32-9CA9-4282-BACC-B099ED0C7D75",
"versionStartIncluding": "2021.08"
},
{
"criteria": "cpe:2.3:a:microfocus:operations_bridge:2021.05:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F3F892E6-F2CD-4946-8DD5-6CBC775FA15D"
}
],
"operator": "OR"
}
]
}
]