microfocus

271 tracked vulnerabilities.

CVE-2026-2123 HIGH
Privilege escalation vulnerability in Operations Agent
Mar 31, 2026
CVSS 7.8
EPSS 0.00
CVE-2024-9841 MEDIUM
ArcSight Management Center < 3.2.5 and ArcSight Platform < 24.2.2 - Reflected Cross-Site Scripting
Nov 08, 2024
CVSS 6.1
EPSS 0.01
CVE-2024-5532 MEDIUM
OpenText Operations Agent 12.20-12.26 - Authenticated Stored Cross-Site Scripting in Internal Status Page
Oct 28, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-4692 LOW
OpenText Application Automation Tools <24.1 - Privilege Escalation
Oct 16, 2024
CVSS 2.4
EPSS 0.00
CVE-2024-4690 HIGH
OpenText Application Automation Tools < 24.1.0 - XML External Entity Injection
Oct 16, 2024
CVSS 8.0
EPSS 0.00
CVE-2024-4211 LOW
OpenText Application Automation Tools - Info Disclosure
Oct 16, 2024
CVSS 2.4
EPSS 0.00
CVE-2024-4189 HIGH
OpenText Application Automation Tools < 24.1.0 - XML External Entity Injection
Oct 16, 2024
CVSS 8.0
EPSS 0.00
CVE-2024-4184 HIGH
OpenText Application Automation Tools < 24.1.0 - XML External Entity Injection
Oct 16, 2024
CVSS 8.0
EPSS 0.00
CVE-2024-6360 CRITICAL
OpenText Vertica 10.X-24.X - Privilege Escalation
Oct 02, 2024
CVSS 9.8
EPSS 0.00
CVE-2024-4556 MEDIUM
OpenText NetIQ Access Manager < 5.0.4 and < 5.1 - Path Traversal
Aug 28, 2024
CVSS 5.7
EPSS 0.00
CVE-2024-4555 HIGH
OpenText NetIQ Access Manager < 5.0.4.1 and < 5.1 - User Account Impersonation
Aug 28, 2024
CVSS 7.7
EPSS 0.00
CVE-2024-4554 HIGH
OpenText NetIQ Access Manager < 5.0.4.1 and 5.1 - Cross-Site Scripting
Aug 28, 2024
CVSS 7.3
EPSS 0.00
CVE-2024-4429 MEDIUM
OpenText iManager 3.2.6.0200 - CSRF
May 28, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-3969 HIGH
OpenText iManager <3.2.6.0200 - SSRF
May 28, 2024
CVSS 7.8
EPSS 0.02
CVE-2024-3970 MEDIUM
OpenText iManager <3.2.6.0200 - SSRF
May 15, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-3968 HIGH
OpenText iManager <3.2.6.0200 - RCE
May 15, 2024
CVSS 7.8
EPSS 0.01
CVE-2024-3967 HIGH
OpenText iManager <3.2.6.0200 - RCE
May 15, 2024
CVSS 7.6
EPSS 0.01
CVE-2024-3488 MEDIUM
OpenText iManager 3.0-3.2.6 - Unauthenticated Unrestricted File Upload
May 15, 2024
CVSS 5.6
EPSS 0.00
CVE-2024-3487 LOW
OpenText iManager 3.2.6.0200 - Authentication Bypass via Parameter Manipulation
May 15, 2024
CVSS 3.5
EPSS 0.00
CVE-2024-3486 HIGH
OpenText iManager 3.2.6.0200 - XML External Entity Injection
May 15, 2024
CVSS 7.8
EPSS 0.03
CVE-2024-3485 MEDIUM
OpenText iManager 3.0-3.2.6 - Server-Side Request Forgery
May 15, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-3484 MEDIUM
OpenText iManager 3.2.6.0200 - Path Traversal
May 15, 2024
CVSS 5.7
EPSS 0.00
CVE-2024-3483 HIGH
OpenText iManager 3.0-3.2.6 - Remote Code Execution via Insecure Deserialization
May 15, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-0622 HIGH
OpenText Operations Agent <12.25 - Privilege Escalation
Feb 15, 2024
CVSS 8.8
EPSS 0.00
CVE-2023-24467 HIGH
OpenText iManager <3.2.6.0000 - Command Injection
Nov 22, 2024
CVSS 8.8
EPSS 0.01
Products
imanager 22 solutions_business_manager 17 access_manager 16 edirectory 16 service_manager 16 enterprise_developer 12 enterprise_server 12 netiq_advanced_authentication 11 application_automation_tools 9 arcsight_logger 9 arcsight_enterprise_security_manager 8 arcsight_management_center 8 operations_agent 7 operations_bridge 7 filr 6 operations_bridge_manager 6 application_performance_management 5 netiq_access_manager 5 visibroker 5 fortify_software_security_center 4 netiq_self_service_password_reset 4 operation_bridge_reporter 4 sentinel 4 service_management_automation 4 verastream_host_integrator 4 content_manager 3 data_center_automation 3 data_protector 3 dimensions_cm 3 enterprise_server_monitor_and_control 3
Quick Filters
Critical CVEs With Exploits In CISA KEV