Micro Focus Operations Agent is a scalable, OS-agnostic software that collects, consolidates, and transfers through smart plug-ins, information on the performance and availability of the system it's installed on. It helps IT operations to proactively monitor infrastructure health and performance. With smart plug-ins, it offers broad management capability for virtual and physical servers, containers, cloud, databases, middleware, and packaged applications.

Micro Focus Operations Agent

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in OpenText™ Operations Agent. 

The XSS vulnerability could allow an attacker with local admin permissions to manipulate the content of the internal status page of the Agent on the local system. 

This issue affects Operations Agent: 12.20, 12.21, 12.22, 12.23, 12.24, 12.25, 12.26.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2021-22505	CRITICAL	9.8	Micro Focus Operations Agent	cpe:2.3:a:microfocus:operations_agent	No	Yes	Apr 13, 2021
CVE-2024-0622	HIGH	7.8	Micro Focus Operations Agent	cpe:2.3:a:microfocus:operations_agent	No	Yes	Feb 15, 2024
CVE-2020-11861	HIGH	7.8	Micro Focus Operations Agent	cpe:2.3:a:microfocus:operations_agent	No	Yes	Sep 18, 2020
CVE-2021-38129	LOW	3.3	Micro Focus Operations Agent	cpe:2.3:a:microfocus:operations_agent	No	Yes	Jan 25, 2022
CVE-2024-5532	LOW	1.8	Micro Focus Operations Agent	cpe:2.3:a:microfocus:operations_agent	No	Yes	Oct 28, 2024

CVE-2024-5532:
Micro Focus Operations Agent vulnerability analysis and mitigation

1.8

Related Micro Focus Operations Agent vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2024-5532: Micro Focus Operations Agent vulnerability analysis and mitigation