CVE-2020-11861 : Unauthorized escalation of local privileges vulnerability on Micro Focus Operati

Unauthorized escalation of local privileges vulnerability on Micro Focus Operation Agent, affecting all versions prior to versions 12.11. The vulnerability could be exploited to escalate the local privileges and gain root access on the system.

Published 2020-09-18 21:15:13

Updated 2021-07-21 11:39:24

Source Micro Focus International (DEFUNCT)

View at NVD, CVE.org

Products affected by CVE-2020-11861

Microfocus » Operations Agent
Versions up to, including, (<=) 12.11
cpe:2.3:a:microfocus:operations_agent:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2020-11861

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 12 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-11861

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	1.8	5.9	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

References for CVE-2020-11861

https://softwaresupport.softwaregrp.com/doc/KM03709900

MySupport - Micro Focus Software Support
Vendor Advisory

Jump to

Vulnerability Details : CVE-2020-11861

Products affected by CVE-2020-11861

Exploit prediction scoring system (EPSS) score for CVE-2020-11861

CVSS scores for CVE-2020-11861

References for CVE-2020-11861