exploitDog

CVE-2026-2123

Опубликовано: 31 мар. 2026

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

A security audit identified a privilege escalation vulnerability in Operations Agent(<=OA 12.29) on Windows. Under specific conditions Operations Agent may run executables from specific writeable locations.Thanks to Manuel Rickli & Philippe Leiser of Oneconsult AG for reporting this vulnerability

Ссылки

https://portal.microfocus.com/s/article/KM000046068
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:microfocus:operations_agent:*:*:*:*:*:*:*:*

Версия от 12.22 (включая) до 12.29 (включая)

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 2%

0.00013

Низкий

7.8 High

CVSS3

Дефекты

CWE-280

Связанные уязвимости

GHSA-5mwg-54j5-6ch5

CVSS3: 7.8

github

29 дней назад

A security audit identified a privilege escalation vulnerability in Operations Agent(<=OA 12.29) on Windows. Under specific conditions Operations Agent may run executables from specific writeable locations.Thanks to Manuel Rickli & Philippe Leiser of Oneconsult AG for reporting this vulnerability

EPSS

Процентиль: 2%

0.00013

Низкий

7.8 High

CVSS3

Дефекты

CWE-280