CVE-2021-22514
CRITICALMicro Focus Application Performance Management <9.51 - RCE
Title source: llmDescription
An arbitrary code execution vulnerability exists in Micro Focus Application Performance Management, affecting versions 9.40, 9.50 and 9.51. The vulnerability could allow remote attackers to execute arbitrary code on affected installations of APM.
References (1)
Core 1
Core References
Various Sources x_refsource_misc
https://softwaresupport.softwaregrp.com/doc/KM03806649
Scores
CVSS v3
9.8
EPSS
0.0178
EPSS Percentile
82.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (3)
microfocus/application_performance_management
9.40
microfocus/application_performance_management
9.50
microfocus/application_performance_management
9.51
Published
Apr 28, 2021
Tracked Since
Feb 18, 2026