CyberSec.Space Logo
Back to CVE Browser

CVE-2021-22502

Known Exploited (CISA KEV)CRITICAL
9.8
CVSS Severity Score
EPSS Score50.7530%
EPSS Percentile89.89th
PublishedFeb 8, 2021
Last ModifiedOct 27, 2025

Vulnerability Description

Remote Code execution vulnerability in Micro Focus Operation Bridge Reporter (OBR) product, affecting version 10.40. The vulnerability could be exploited to allow Remote Code Execution on the OBR server.

Affected Platforms (CPE)

πŸ“¦
Microfocus

Operation Bridge Reporter

= 10.40

References & Advisories

πŸ”— http://packetstormsecurity.com/files/162408/Micro-Focus-Operations-Bridge-Reporter-Unauthenticated-Command-Injection.html
πŸ”— https://softwaresupport.softwaregrp.com/doc/KM03775947
πŸ”— https://www.zerodayinitiative.com/advisories/ZDI-21-153/
πŸ”— https://www.zerodayinitiative.com/advisories/ZDI-21-154/
πŸ”— http://packetstormsecurity.com/files/162408/Micro-Focus-Operations-Bridge-Reporter-Unauthenticated-Command-Injection.html
πŸ”— https://softwaresupport.softwaregrp.com/doc/KM03775947
πŸ”— https://www.zerodayinitiative.com/advisories/ZDI-21-153/
πŸ”— https://www.zerodayinitiative.com/advisories/ZDI-21-154/

Related Vulnerabilities

CVE-2020-118579.8

An Authorization Bypass vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier. The vulnerabi...

CVE-2020-118569.8

Arbitrary code execution vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier. The vulnerab...

CVE-2020-118557.8

An Authorization Bypass vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier. The vulnerabi...

CVE-2021-225087.2

A potential vulnerability has been identified for OpenText Operations Bridge Reporter. The vulnerability could be exploited to in...