{"cve":{"cve_id":"CVE-2020-11858","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.02687,"epss_percentile":0.83904,"epss_as_of":"2026-06-23","description":"Code execution with escalated privileges vulnerability in Micro Focus products Operation Bridge Manager and Operation Bridge (containerized). The vulneravility affects: 1.) Operation Bridge Manager versions: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, 10.63,10.62, 10.61, 10.60, 10.12, 10.11, 10.10 and all earlier versions. 2.) Operations Bridge (containerized) versions: 2020.05, 2019.08, 2019.05, 2018.11, 2018.08, 2018.05. 2018.02 and 2017.11. The vulnerability could allow local attackers to execute code with escalated privileges.","published_at":"2020-10-27T16:45:12Z","last_modified_at":null,"cvss_v3_score":7.8,"cvss_v3_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss_v3_severity":"HIGH","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":null,"nvd_references":["https://softwaresupport.softwaregrp.com/doc/KM03747658","https://softwaresupport.softwaregrp.com/doc/KM03747854","https://www.zerodayinitiative.com/advisories/ZDI-20-1326/","http://packetstormsecurity.com/files/161411/Micro-Focus-Operations-Bridge-Manager-Local-Privilege-Escalation.html"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:13:20.710940Z"},"effective_severity":"HIGH","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"L","value_label":"Low"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-containerized","product_name":"Operation Bridge (containerized)","version_start":"2020.05","version_start_inclusive":true,"version_end":"2020.05","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-containerized:2020.05:2020.05"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-containerized","product_name":"Operation Bridge (containerized)","version_start":"2019.08","version_start_inclusive":true,"version_end":"2019.08","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-containerized:2019.08:2019.08"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-containerized","product_name":"Operation Bridge (containerized)","version_start":"2019.05","version_start_inclusive":true,"version_end":"2019.05","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-containerized:2019.05:2019.05"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-containerized","product_name":"Operation Bridge (containerized)","version_start":"2018.11","version_start_inclusive":true,"version_end":"2018.11","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-containerized:2018.11:2018.11"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-containerized","product_name":"Operation Bridge (containerized)","version_start":"2018.08","version_start_inclusive":true,"version_end":"2018.08","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-containerized:2018.08:2018.08"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-containerized","product_name":"Operation Bridge (containerized)","version_start":"2018.05","version_start_inclusive":true,"version_end":"2018.05","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-containerized:2018.05:2018.05"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-containerized","product_name":"Operation Bridge (containerized)","version_start":"2018.02","version_start_inclusive":true,"version_end":"2018.02","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-containerized:2018.02:2018.02"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-containerized","product_name":"Operation Bridge (containerized)","version_start":"2017.11","version_start_inclusive":true,"version_end":"2017.11","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-containerized:2017.11:2017.11"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-manager","product_name":"Operation Bridge Manager","version_start":"2020.05","version_start_inclusive":true,"version_end":"2020.05","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-manager:2020.05:2020.05"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-manager","product_name":"Operation Bridge Manager","version_start":"2019.11","version_start_inclusive":true,"version_end":"2019.11","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-manager:2019.11:2019.11"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-manager","product_name":"Operation Bridge Manager","version_start":"2019.05","version_start_inclusive":true,"version_end":"2019.05","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-manager:2019.05:2019.05"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-manager","product_name":"Operation Bridge Manager","version_start":"2018.11","version_start_inclusive":true,"version_end":"2018.11","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-manager:2018.11:2018.11"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-manager","product_name":"Operation Bridge Manager","version_start":"2018.05","version_start_inclusive":true,"version_end":"2018.05","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-manager:2018.05:2018.05"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-manager","product_name":"Operation Bridge Manager","version_start":"10.63","version_start_inclusive":true,"version_end":"10.63","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-manager:10.63:10.63"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-manager","product_name":"Operation Bridge Manager","version_start":"10.62","version_start_inclusive":true,"version_end":"10.62","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-manager:10.62:10.62"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-manager","product_name":"Operation Bridge Manager","version_start":"10.61","version_start_inclusive":true,"version_end":"10.61","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-manager:10.61:10.61"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-manager","product_name":"Operation Bridge Manager","version_start":"10.60","version_start_inclusive":true,"version_end":"10.60","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-manager:10.60:10.60"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-manager","product_name":"Operation Bridge Manager","version_start":"10.12","version_start_inclusive":true,"version_end":"10.12","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-manager:10.12:10.12"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-manager","product_name":"Operation Bridge Manager","version_start":"10.11","version_start_inclusive":true,"version_end":"10.11","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-manager:10.11:10.11"},{"vendor_slug":"micro-focus","vendor_name":"Micro Focus","product_slug":"operation-bridge-manager","product_name":"Operation Bridge Manager","version_start":"unspecified","version_start_inclusive":true,"version_end":"10.10","version_end_inclusive":true,"cpe23_uri":"cve5:micro-focus:operation-bridge-manager:unspecified:10.10"}],"exploit_refs":[],"news":[],"references":[{"url":"https://softwaresupport.softwaregrp.com/doc/KM03747658","source_type":"MISC","tags":[]},{"url":"https://softwaresupport.softwaregrp.com/doc/KM03747854","source_type":"MISC","tags":[]},{"url":"https://www.zerodayinitiative.com/advisories/ZDI-20-1326/","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://packetstormsecurity.com/files/161411/Micro-Focus-Operations-Bridge-Manager-Local-Privilege-Escalation.html","source_type":"EXPLOIT","tags":["exploit"]}],"timeline":[{"type":"published","at":"2020-10-27T16:45:12Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:02:06.718090Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:02:06.718090Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:02:06.718090Z","label":"CVSS score revised","source":"cvelistv5"}]}