CVE-2020-9517
First published: Mon Mar 09 2020(Updated: )
There is an improper restriction of rendered UI layers or frames vulnerability in Micro Focus Service Manager Release Control versions 9.50 and 9.60. The vulnerability may result in the ability of malicious users to perform UI redress attacks.
Credit: security@microfocus.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HP Service Manager | =9.50 | |
| HP Service Manager | =9.60 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-9517?
CVE-2020-9517 is classified as a high severity vulnerability due to the potential for UI redress attacks.
How do I fix CVE-2020-9517?
To remediate CVE-2020-9517, update your Micro Focus Service Manager to version 9.61 or later, which addresses this vulnerability.
What systems are affected by CVE-2020-9517?
CVE-2020-9517 affects Micro Focus Service Manager versions 9.50 and 9.60.
What type of attack can be performed using CVE-2020-9517?
CVE-2020-9517 may allow malicious users to conduct UI redress attacks, potentially misleading users.
Is CVE-2020-9517 remotely exploitable?
Yes, CVE-2020-9517 can be exploited remotely if the vulnerable versions of Micro Focus Service Manager are exposed to untrusted users.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/references
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/microfocus
- canonical/hp service manager
- version/hp service manager/9.50
- version/hp service manager/9.60