Описание
Information exposure in Micro Focus Content Manager, versions 9.1, 9.2 and 9.3. This vulnerability when configured to use an Oracle database, allows valid system users to gain access to a limited subset of records they would not normally be able to access when the system is in an undisclosed abnormal state.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:microfocus:content_manager:9.1:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:content_manager:9.2:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:content_manager:9.3:*:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00199
Низкий
4.3 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
больше 3 лет назад
Information exposure in Micro Focus Content Manager, versions 9.1, 9.2 and 9.3. This vulnerability when configured to use an Oracle database, allows valid system users to gain access to a limited subset of records they would not normally be able to access when the system is in an undisclosed abnormal state.
EPSS
Процентиль: 42%
0.00199
Низкий
4.3 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-200