Local Escalation of Privilege vulnerability to Micro Focus Universal CMDB, versions 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, 10.33, 11.00. The vulnerability could be remotely exploited to Local Escalation of Privilege.

Metrics

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Microfocus
  • Ucmdb Configuration Manager

Configuration 1 [-]

OR cpe:2.3:a:microfocus:ucmdb_configuration_manager:10.20:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:ucmdb_configuration_manager:10.21:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:ucmdb_configuration_manager:10.22:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:ucmdb_configuration_manager:10.30:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:ucmdb_configuration_manager:10.31:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:ucmdb_configuration_manager:10.32:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:ucmdb_configuration_manager:10.33:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:ucmdb_configuration_manager:11.00:*:*:*:*:*:*:*

No data.

References
Link Providers
http://www.securitytracker.com/id/1040680 cve-icon cve-icon
https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03141180 cve-icon cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: microfocus

Published: 2018-04-23T21:00:00

Updated: 2024-08-05T06:01:49.261Z

Reserved: 2018-02-01T00:00:00

Link: CVE-2018-6491

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-04-24T01:29:00.397

Modified: 2024-11-21T04:10:45.980

Link: CVE-2018-6491

cve-icon Redhat

No data.