CVE-2021-22519

Execute arbitrary code vulnerability in Micro Focus SiteScope product, affecting versions 11.40,11.41 , 2018.05(11.50), 2018.08(11.51), 2018.11(11.60), 2019.02(11.70), 2019.05(11.80), 2019.08(11.90), 2019.11(11.91), 2020.05(11.92), 2020.10(11.93). The vulnerability could allow remote attackers to execute arbitrary code on affected installations of SiteScope.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
microfocusCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 81%
VendorProductVersion
microfocussitescope
11.40
microfocussitescope
11.41
microfocussitescope
11.50
microfocussitescope
11.51
microfocussitescope
11.60
microfocussitescope
11.70
microfocussitescope
11.80
microfocussitescope
11.90
microfocussitescope
11.91
microfocussitescope
11.92
microfocussitescope
11.93
𝑥
= Vulnerable software versions
References
https://softwaresupport.softwaregrp.com/doc/KM03811028
https://softwaresupport.softwaregrp.com/doc/KM03811028