How does CVE-2020-9523 affect Micro Focus enterprise developer?

CVE-2020-9523 affects all versions prior to 4.0 Patch Update 16 of Micro Focus enterprise developer.

How does CVE-2020-9523 affect Micro Focus enterprise server?

CVE-2020-9523 affects all versions prior to 4.0 Patch Update 16 of Micro Focus enterprise server.

What is the severity of CVE-2020-9523?

The severity of CVE-2020-9523 is high, with a CVSS score of 8.8.

How can I mitigate CVE-2020-9523 on Micro Focus enterprise developer and server?

To mitigate CVE-2020-9523, it is recommended to update to version 4.0 Patch Update 16 or version 5.0 Patch Update 6 of Micro Focus enterprise developer and server.

Vulnerability/
CVE-2020-9523

high

8.8

CWE

522

17/4/2020

4/8/2024

CVE-2020-9523

Q: What is CVE-2020-9523?

CVE-2020-9523 is an insufficiently protected credentials vulnerability on Micro Focus enterprise developer and enterprise server.

First published: Fri Apr 17 2020(Updated: )

Insufficiently protected credentials vulnerability on Micro Focus enterprise developer and enterprise server, affecting all version prior to 4.0 Patch Update 16, and version 5.0 Patch Update 6. The vulnerability could allow an attacker to transmit hashed credentials for the user account running the Micro Focus Directory Server (MFDS) to an arbitrary site, compromising that account's security.

Credit: security@microfocus.com

Affected Software	Affected Version	How to fix
Microfocus Enterprise Developer	<=3.0
Microfocus Enterprise Developer	=4.0
Microfocus Enterprise Developer	=4.0-update_1
Microfocus Enterprise Developer	=4.0-update_10
Microfocus Enterprise Developer	=4.0-update_11
Microfocus Enterprise Developer	=4.0-update_12
Microfocus Enterprise Developer	=4.0-update_13
Microfocus Enterprise Developer	=4.0-update_14
Microfocus Enterprise Developer	=4.0-update_15
Microfocus Enterprise Developer	=4.0-update_2
Microfocus Enterprise Developer	=4.0-update_3
Microfocus Enterprise Developer	=4.0-update_4
Microfocus Enterprise Developer	=4.0-update_5
Microfocus Enterprise Developer	=4.0-update_6
Microfocus Enterprise Developer	=4.0-update_7
Microfocus Enterprise Developer	=4.0-update_8
Microfocus Enterprise Developer	=4.0-update_9
Microfocus Enterprise Developer	=5.0
Microfocus Enterprise Developer	=5.0-update_1
Microfocus Enterprise Developer	=5.0-update_2
Microfocus Enterprise Developer	=5.0-update_3
Microfocus Enterprise Developer	=5.0-update_4
Microfocus Enterprise Developer	=5.0-update_5
Microfocus Enterprise Server	<=3.0
Microfocus Enterprise Server	=4.0
Microfocus Enterprise Server	=4.0-update_1
Microfocus Enterprise Server	=4.0-update_10
Microfocus Enterprise Server	=4.0-update_11
Microfocus Enterprise Server	=4.0-update_12
Microfocus Enterprise Server	=4.0-update_13
Microfocus Enterprise Server	=4.0-update_14
Microfocus Enterprise Server	=4.0-update_15
Microfocus Enterprise Server	=4.0-update_2
Microfocus Enterprise Server	=4.0-update_3
Microfocus Enterprise Server	=4.0-update_4
Microfocus Enterprise Server	=4.0-update_5
Microfocus Enterprise Server	=4.0-update_6
Microfocus Enterprise Server	=4.0-update_7
Microfocus Enterprise Server	=4.0-update_8
Microfocus Enterprise Server	=4.0-update_9
Microfocus Enterprise Server	=5.0
Microfocus Enterprise Server	=5.0-update_1
Microfocus Enterprise Server	=5.0-update_2
Microfocus Enterprise Server	=5.0-update_3
Microfocus Enterprise Server	=5.0-update_4
Microfocus Enterprise Server	=5.0-update_5

Never miss a vulnerability like this again

Reference Links

https://softwaresupport.softwaregrp.com/doc/KM03634936

Frequently Asked Questions

What is CVE-2020-9523?
CVE-2020-9523 is an insufficiently protected credentials vulnerability on Micro Focus enterprise developer and enterprise server.
How does CVE-2020-9523 affect Micro Focus enterprise developer?
CVE-2020-9523 affects all versions prior to 4.0 Patch Update 16 of Micro Focus enterprise developer.
How does CVE-2020-9523 affect Micro Focus enterprise server?
CVE-2020-9523 affects all versions prior to 4.0 Patch Update 16 of Micro Focus enterprise server.
What is the severity of CVE-2020-9523?
The severity of CVE-2020-9523 is high, with a CVSS score of 8.8.
How can I mitigate CVE-2020-9523 on Micro Focus enterprise developer and server?
To mitigate CVE-2020-9523, it is recommended to update to version 4.0 Patch Update 16 or version 5.0 Patch Update 6 of Micro Focus enterprise developer and server.

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/last-modified-date
agent/weakness
agent/severity
agent/references
agent/description
agent/event
agent/first-publish-date
agent/tags
agent/source
vendor/microfocus
canonical/microfocus enterprise developer
version/microfocus enterprise developer/3.0
version/microfocus enterprise developer/4.0
version/microfocus enterprise developer/4.0-update_1
version/microfocus enterprise developer/4.0-update_10
version/microfocus enterprise developer/4.0-update_11
version/microfocus enterprise developer/4.0-update_12
version/microfocus enterprise developer/4.0-update_13
version/microfocus enterprise developer/4.0-update_14
version/microfocus enterprise developer/4.0-update_15
version/microfocus enterprise developer/4.0-update_2
version/microfocus enterprise developer/4.0-update_3
version/microfocus enterprise developer/4.0-update_4
version/microfocus enterprise developer/4.0-update_5
version/microfocus enterprise developer/4.0-update_6
version/microfocus enterprise developer/4.0-update_7
version/microfocus enterprise developer/4.0-update_8
version/microfocus enterprise developer/4.0-update_9
version/microfocus enterprise developer/5.0
version/microfocus enterprise developer/5.0-update_1
version/microfocus enterprise developer/5.0-update_2
version/microfocus enterprise developer/5.0-update_3
version/microfocus enterprise developer/5.0-update_4
version/microfocus enterprise developer/5.0-update_5
canonical/microfocus enterprise server
version/microfocus enterprise server/3.0
version/microfocus enterprise server/4.0
version/microfocus enterprise server/4.0-update_1
version/microfocus enterprise server/4.0-update_10
version/microfocus enterprise server/4.0-update_11
version/microfocus enterprise server/4.0-update_12
version/microfocus enterprise server/4.0-update_13
version/microfocus enterprise server/4.0-update_14
version/microfocus enterprise server/4.0-update_15
version/microfocus enterprise server/4.0-update_2
version/microfocus enterprise server/4.0-update_3
version/microfocus enterprise server/4.0-update_4
version/microfocus enterprise server/4.0-update_5
version/microfocus enterprise server/4.0-update_6
version/microfocus enterprise server/4.0-update_7
version/microfocus enterprise server/4.0-update_8
version/microfocus enterprise server/4.0-update_9
version/microfocus enterprise server/5.0
version/microfocus enterprise server/5.0-update_1
version/microfocus enterprise server/5.0-update_2
version/microfocus enterprise server/5.0-update_3
version/microfocus enterprise server/5.0-update_4
version/microfocus enterprise server/5.0-update_5

CVE-2020-9523

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2020-9523?

How does CVE-2020-9523 affect Micro Focus enterprise developer?

How does CVE-2020-9523 affect Micro Focus enterprise server?

What is the severity of CVE-2020-9523?

How can I mitigate CVE-2020-9523 on Micro Focus enterprise developer and server?

Company

Resources

Contact