Unauthorized Data Modification in Micro Focus Service Manager by Non-SysAdmin Users
CVE-2019-11661

8.3HIGH

Key Information:

Vendor: Micro Focus
Status: Service Manager
Vendor: CVE Published:; 18 September 2019

🔔 Create Micro Focus Vulnerability Alert

What is CVE-2019-11661?

This vulnerability allows non-SysAdmin users to alter certain tables within the Micro Focus Service Manager, potentially compromising data integrity and confidentiality. By exploiting this flaw, unauthorized individuals can gain access to sensitive information and make unwarranted changes, highlighting the need for immediate remediation in affected versions.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Service Manager 9.30

Service Manager 9.31

Service Manager 9.32

References

https://softwaresupport.softwaregrp.com/doc/KM03518316

x_refsource_CONFIRM

CVSS V3.1

Score:

8.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 18, 2019
Vulnerability Reserved
May 1, 2019

JSON

Micro Focus

What is CVE-2019-11661?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.