Privilege Escalation Vulnerability in Micro Focus Operations Agent
CVE-2021-38129

3.3LOW

Key Information:

Vendor: Microfocus
Status: Micro Focus Operations Agent.
Vendor: CVE Published:; 25 January 2022

What is CVE-2021-38129?

The vulnerability allows a non-privileged local user to exploit the Micro Focus Operations Agent, enabling unauthorized access to sensitive system monitoring data. This could lead to potential data breaches or unauthorized manipulations of monitoring processes, posing significant risks to system integrity and data confidentiality.

Affected Version(s)

Micro Focus Operations Agent. Micro Focus Operations Agent Versions 12.x up to and including 12.21

References

https://portal.microfocus.com/s/article/KM000003539?langu...

x_refsource_MISC

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 25, 2022
Vulnerability Reserved
Aug 4, 2021

Microfocus

What is CVE-2021-38129?

Affected Version(s)

References

CVSS V3.1

Timeline