A path traversal vulnerability has been identified in Verastream Host Integrator
CVE-2019-11654

8.6HIGH

Key Information:

Vendor: Micro Focus
Status: Verastream Host Integrator
Vendor: CVE Published:; 23 August 2019

🔔 Create Micro Focus Vulnerability Alert

What is CVE-2019-11654?

Path traversal vulnerability in Micro Focus Verastream Host Integrator (VHI), versions 7.7 SP2 and earlier, The vulnerability allows remote unauthenticated attackers to read arbitrary files.

Affected Version(s)

Verastream Host Integrator < 7.7 SP2

References

https://support.microfocus.com/kb/doc.php?id=7024061

x_refsource_CONFIRM

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 23, 2019
Vulnerability Reserved
May 1, 2019