MFSBGN03803 rev.1 - UCMDB, Installation File Access Control Privilege Escalation Vulnerability
CVE-2018-6491

8.1HIGH

Key Information:

Vendor: Micro Focus
Status: Universal Cmdb
Vendor: CVE Published:; 24 April 2018

🔔 Create Micro Focus Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2018-6491?

Local Escalation of Privilege vulnerability to Micro Focus Universal CMDB, versions 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, 10.33, 11.00. The vulnerability could be remotely exploited to Local Escalation of Privilege.

Affected Version(s)

Universal CMDB 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, 10.33, 11.00

References

http://www.securitytracker.com/id/1040680

vdb-entryx_refsource_SECTRACK

https://softwaresupport.softwaregrp.com/document/-/facets...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Aug 5, 2024
Vulnerability published
Apr 24, 2018
Vulnerability Reserved
Feb 1, 2018

Credit

Micro Focus would like to thank TrendyTofu of Trend Micro's Zero Day Initiative for reporting this issue to [email protected].