CVE-2018-19644

EUVD-2018-11329
Reflected cross site script issue in Micro Focus Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions prior to 11.5.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
microfocusCNA
5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 40%
Affected Products (NVD)
VendorProductVersion
microfocussolutions_business_manager
𝑥
< 11.5
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://help.serena.com/doc_center/sbm/ver11_5/sbm_release_notes.htm
http://help.serena.com/doc_center/sbm/ver11_5/sbm_release_notes.htm