CVE-2021-22505

{"id": "CVE-2021-22505", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2021-04-13T14:15:13.833", "references": [{"url": "https://softwaresupport.softwaregrp.com/doc/KM03792442", "source": "security@opentext.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Escalation of privileges vulnerability in Micro Focus Operations Agent, affects versions 12.0x, 12.10, 12.11, 12.12, 12.14 and 12.15. The vulnerability could be exploited to escalate privileges and execute code under the account of the Operations Agent."}, {"lang": "es", "value": "Una vulnerabilidad de escalada de privilegios en Micro Focus Operations Agent afecta a versiones 12.0x, 12.10, 12.11, 12.12, 12.14 y 12.15. La vulnerabilidad podr\u00eda ser explotada para escalar privilegios y ejecutar c\u00f3digo bajo la cuenta del Operations Agent"}], "lastModified": "2023-11-07T03:30:15.257", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microfocus:operations_agent:12.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B386C147-D89B-45C2-9C68-545C1102F519"}, {"criteria": "cpe:2.3:a:microfocus:operations_agent:12.01:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A21863B-4079-44B7-9E77-AEF2ACFEE866"}, {"criteria": "cpe:2.3:a:microfocus:operations_agent:12.02:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BCB70185-D717-4CCD-96D7-D87DB0B26D23"}, {"criteria": "cpe:2.3:a:microfocus:operations_agent:12.03:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BFAEA425-6775-422A-810F-34148C0568D5"}, {"criteria": "cpe:2.3:a:microfocus:operations_agent:12.04:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "36D8E42D-76B8-44F1-9D5E-1E028856048B"}, {"criteria": "cpe:2.3:a:microfocus:operations_agent:12.05:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CE2D00B-25CF-46C5-9A59-7288D027FF4C"}, {"criteria": "cpe:2.3:a:microfocus:operations_agent:12.06:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F4AF06A9-7934-49E4-BA84-4060F069FE12"}, {"criteria": "cpe:2.3:a:microfocus:operations_agent:12.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "71E8620F-E030-4A29-9630-E52FE9F8CBAF"}, {"criteria": "cpe:2.3:a:microfocus:operations_agent:12.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7DCB40C1-168E-41AE-B346-C3579ECCE8B0"}, {"criteria": "cpe:2.3:a:microfocus:operations_agent:12.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "89DB61A8-FE89-46FA-AE38-65B79998BB82"}, {"criteria": "cpe:2.3:a:microfocus:operations_agent:12.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B55488BF-8BF0-489C-8FEF-2B68F5964B15"}, {"criteria": "cpe:2.3:a:microfocus:operations_agent:12.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "973DFAB3-05AE-49A0-917B-ADAD9C296322"}], "operator": "OR"}]}], "sourceIdentifier": "security@opentext.com"}