What is CVE-2020-11857?

CVE-2020-11857 is a vulnerability in Operation Bridge Reporter.. Published 2020-09-22.

Is CVE-2020-11857 known to be exploited?

4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Operation Bridge Reporter.

CVE-2020-11857

An Authorization Bypass vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier. The vulnerability could allow remote attackers to access the OBR host as a non-admin user

EPSS: 0.632 (98.4th percentile) — read the EPSS interpretation.

Affected products

N/a Operation Bridge Reporter. — versions 10.40 and earlier.

Public proof-of-concept exploits

rapid7/metasploit-framework
20142995/nuclei-templates
ARPSyndicate/cvemon
cyb3r-w0lf/nuclei-template-collection

References

softwaresupport.softwaregrp.com/doc/KM03710590 (x_refsource_MISC)
www.zerodayinitiative.com/advisories/ZDI-20-1215/ (x_refsource_MISC)
packetstormsecurity.com/files/162407/Micro-Focus-Operations-Bridge-Reporter-shr… (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-11857?: CVE-2020-11857 is a vulnerability in Operation Bridge Reporter.. Published 2020-09-22.
Is CVE-2020-11857 known to be exploited?: 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.