CVE-2021-22504
First published: Fri Feb 12 2021(Updated: )
Arbitrary code execution vulnerability on Micro Focus Operations Bridge Manager product, affecting versions 10.1x, 10.6x, 2018.05, 2018.11, 2019.05, 2019.11, 2020.05, 2020.10. The vulnerability could allow remote attackers to execute arbitrary code on an OBM server.
Credit: security@microfocus.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Micro Focus Operations Bridge Manager | =10.10 | |
| Micro Focus Operations Bridge Manager | =10.11 | |
| Micro Focus Operations Bridge Manager | =10.12 | |
| Micro Focus Operations Bridge Manager | =10.60 | |
| Micro Focus Operations Bridge Manager | =10.61 | |
| Micro Focus Operations Bridge Manager | =10.62 | |
| Micro Focus Operations Bridge Manager | =10.63 | |
| Micro Focus Operations Bridge Manager | =2018.05 | |
| Micro Focus Operations Bridge Manager | =2018.11 | |
| Micro Focus Operations Bridge Manager | =2019.05 | |
| Micro Focus Operations Bridge Manager | =2019.11 | |
| Micro Focus Operations Bridge Manager | =2020.05 | |
| Micro Focus Operations Bridge Manager | =2020.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-22504?
CVE-2021-22504 is an arbitrary code execution vulnerability on Micro Focus Operations Bridge Manager product.
Which versions of Micro Focus Operations Bridge Manager are affected by CVE-2021-22504?
Versions 10.10, 10.11, 10.12, 10.60, 10.61, 10.62, 10.63, 2018.05, 2018.11, 2019.05, 2019.11, 2020.05, and 2020.10 of Micro Focus Operations Bridge Manager are affected by CVE-2021-22504.
What is the severity of CVE-2021-22504?
CVE-2021-22504 has a severity rating of critical (9.8).
How can remote attackers exploit CVE-2021-22504?
Remote attackers can exploit CVE-2021-22504 to execute arbitrary code on an OBM server.
How can I fix CVE-2021-22504?
To fix CVE-2021-22504, update to a patched version of Micro Focus Operations Bridge Manager.
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/microfocus
- canonical/micro focus operations bridge manager
- version/micro focus operations bridge manager/10.10
- version/micro focus operations bridge manager/10.11
- version/micro focus operations bridge manager/10.12
- version/micro focus operations bridge manager/10.60
- version/micro focus operations bridge manager/10.61
- version/micro focus operations bridge manager/10.62
- version/micro focus operations bridge manager/10.63
- version/micro focus operations bridge manager/2018.05
- version/micro focus operations bridge manager/2018.11
- version/micro focus operations bridge manager/2019.05
- version/micro focus operations bridge manager/2019.11
- version/micro focus operations bridge manager/2020.05
- version/micro focus operations bridge manager/2020.10