CVE-2021-22517
First published: Thu Aug 05 2021(Updated: )
A potential unauthorized privilege escalation vulnerability has been identified in Micro Focus Data Protector. The vulnerability affects versions 10.10, 10.20, 10.30, 10.40, 10.50, 10.60, 10.70, 10.80, 10.0 and 10.91. A privileged user may potentially misuse this feature and thus allow unintended and unauthorized access of data.
Credit: security@microfocus.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microfocus Data Protector | =10.0 | |
| Microfocus Data Protector | =10.10 | |
| Microfocus Data Protector | =10.20 | |
| Microfocus Data Protector | =10.30 | |
| Microfocus Data Protector | =10.40 | |
| Microfocus Data Protector | =10.50 | |
| Microfocus Data Protector | =10.60 | |
| Microfocus Data Protector | =10.70 | |
| Microfocus Data Protector | =10.80 | |
| Microfocus Data Protector | =10.91 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-22517?
CVE-2021-22517 is a potential unauthorized privilege escalation vulnerability identified in Micro Focus Data Protector.
Which versions of Micro Focus Data Protector are affected?
Versions 10.0, 10.10, 10.20, 10.30, 10.40, 10.50, 10.60, 10.70, 10.80, and 10.91 of Micro Focus Data Protector are affected.
What is the severity of CVE-2021-22517?
CVE-2021-22517 has a severity score of 8.8, which is classified as high.
How can a privileged user misuse this vulnerability?
A privileged user may potentially misuse this vulnerability and allow unintended unauthorized privilege escalation.
Where can I find more information about CVE-2021-22517?
More information about CVE-2021-22517 can be found at the following link: https://portal.microfocus.com/s/article/KM000001460
- collector/nvd-index
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/severity
- agent/references
- agent/description
- agent/event
- agent/first-publish-date
- agent/tags
- agent/source
- vendor/microfocus
- canonical/microfocus data protector
- version/microfocus data protector/10.0
- version/microfocus data protector/10.10
- version/microfocus data protector/10.20
- version/microfocus data protector/10.30
- version/microfocus data protector/10.40
- version/microfocus data protector/10.50
- version/microfocus data protector/10.60
- version/microfocus data protector/10.70
- version/microfocus data protector/10.80
- version/microfocus data protector/10.91