CVE-2020-9523

Published: Apr 17, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

Insufficiently protected credentials vulnerability on Micro Focus enterprise developer and enterprise server, affecting all version prior to 4.0 Patch Update 16, and version 5.0 Patch Update 6. The vulnerability could allow an attacker to transmit hashed credentials for the user account running the Micro Focus Directory Server (MFDS) to an arbitrary site, compromising that account's security.

Vendor	Product	Versions
n/a	Enterprise developer and server.	affected `All version prior to version 4.0 Patch Update 16, and version 5.0 Patch Update 6.`

References

https://softwaresupport.softwaregrp.com/doc/KM03634936

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-9523

Description

Affected Products

References