← back
CVE-2018-7681

CVE-2018-7681

EPSS 0.5%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.5%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
21 Jun 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Micro Focus Solutions Business Manager versions prior to 11.4 allows JavaScript to be embedded in URLs placed in "Favorites" folder. If the user has certain administrative privileges then this vulnerability can impact other users in the system.
Affected products
Micro Focus · Solutions Business Manager 11.4

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://help.serena.com/doc_center/sbm/ver11_4/sbm_release_notes.htm