Code execution with escalated privilegesn vlnerability in Operation bridge Manager and Operations Bridge (containerized) products.
Description
CVE-2020-11858 allows a local attacker already running low-privileged code on the OBM host to escalate to SYSTEM due to incorrect permissions on the installation directory.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
CVE-2020-11858 allows a local attacker already running low-privileged code on the OBM host to escalate to SYSTEM due to incorrect permissions on the installation directory.
Vulnerability
CVE-2020-11858 is an improper permission assignment vulnerability in the Micro Focus Operations Bridge Manager (OBM) and Operations Bridge (containerized) products. The flaw resides in the product installer, which sets incorrect permissions on the installation directory. Affected versions include Operations Bridge Manager 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, 10.63, 10.62, 10.61, 10.60, 10.12, 10.11, 10.10 and all earlier versions, as well as Operations Bridge (containerized) 2020.05, 2019.08, 2019.05, 2018.11, 2018.08, 2018.05, 2018.02, and 2017.11. The vulnerability is only exploitable when the Operations Bridge Manager capability is deployed in the containerized version. [1], [2], [3]
Exploitation
An attacker must first obtain the ability to execute low-privileged code on the target OBM host system. No network access, authentication to the OBM application, or user interaction is required beyond the initial low-privilege code execution. The specific flaw is the incorrect permission set on the installation directory, which allows the attacker to write or modify files that are executed with higher privileges. The attacker then leverages these misconfigured permissions to escalate privileges and execute arbitrary code in the context of SYSTEM. [3]
Impact
Successful exploitation allows a local attacker to execute arbitrary code with escalated privileges, specifically gaining full SYSTEM-level control on the host. This provides a complete compromise of the confidentiality, integrity, and availability of the affected system, as the attacker can read, modify, or disrupt any data or processes on the host. [1], [2], [3]
Mitigation
Micro Focus has released security patches for both product lines. For Operations Bridge Manager, the fixed versions are 2020.05 (update), 2019.11 (update), 2019.05 (update), 2018.11 (update), and 2018.05 (update) — specific patch details are available from Micro Focus support (KM03747658). For Operations Bridge (containerized), fixed versions are 2020.05 (update), 2019.08 (update), and 2019.05 (update) — refer to KM03747854. If patching is not immediately possible, restrict local access to the OBM host to trusted administrators only. The vulnerability is not known to be listed in CISA's Known Exploited Vulnerabilities catalog as of publication. [1], [2]
AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
4<=2020.05+ 1 more
- (no CPE)range: <=2020.05
- (no CPE)range: 2020.05
- Range: <=2020.05
- Micro Focus/Operation Bridge Managerv5Range: 2020.05
Patches
0No patches discovered yet.
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
4- packetstormsecurity.com/files/161411/Micro-Focus-Operations-Bridge-Manager-Local-Privilege-Escalation.htmlmitrex_refsource_MISC
- softwaresupport.softwaregrp.com/doc/KM03747658mitrex_refsource_MISC
- softwaresupport.softwaregrp.com/doc/KM03747854mitrex_refsource_MISC
- www.zerodayinitiative.com/advisories/ZDI-20-1326/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.