CVE-2019-18946

Name of the Vulnerable Software and Affected Versions Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1

Description The issue concerns session fixation. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited.

Recommendations For versions prior to 11.7.1, update to version 11.7.1 or later to resolve the issue. As a temporary workaround, consider implementing additional session validation to minimize the risk of session fixation. Restrict access to sensitive areas of the application to minimize the risk of exploitation.