PT-2019-12454 · Micro Focus · Enterprise Developer+1
Published
2019-10-02
·
Updated
2019-10-10
·
CVE-2019-11651
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Micro Focus Enterprise Developer and Enterprise Server versions prior to 3.0 Patch Update 20
Micro Focus Enterprise Developer and Enterprise Server versions prior to 4.0 Patch Update 12
Micro Focus Enterprise Developer and Enterprise Server versions prior to 5.0 Patch Update 2
Description
The issue is related to Reflected XSS, which could be exploited to redirect a user to a malicious page or forge certain types of web requests.
Recommendations
For versions prior to 3.0 Patch Update 20, update to version 3.0 Patch Update 20 or later.
For versions prior to 4.0 Patch Update 12, update to version 4.0 Patch Update 12 or later.
For versions prior to 5.0 Patch Update 2, update to version 5.0 Patch Update 2 or later.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Enterprise Developer
Enterprise Server