Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netiq vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2021-22515
Multi-Factor Authentication (MFA) functionality can be bypassed, allowing the use of single factor authentication in NetIQ Advanced Authentication versions before 6.3 SP4 Patch 1.
Microfocus Netiq Advanced Authentication 6.3
Microfocus Netiq Advanced Authentication
4.3
CVSSv2
CVE-2019-11674
Man-in-the-middle vulnerability in Micro Focus Self Service Password Reset, affecting all versions before 4.4.0.4. The vulnerability could exploit invalid certificate validation and may result in a man-in-the-middle attack.
Microfocus Netiq Self Service Password Reset
Microfocus Netiq Self Service Password Reset 4.4
6.5
CVSSv2
CVE-2018-1345
NetIQ iManager, versions before 3.1, under some circumstances could be susceptible to an elevation of privilege attack.
Netiq Imanager
5
CVSSv2
CVE-2018-1346
Addresses denial of service attack to eDirectory versions before 9.1.
Netiq Edirectory
4.3
CVSSv2
CVE-2018-1347
The administrative web interface in NetIQ iManager, versions before 3.1, are vulnerable to reflected cross site scripting.
Netiq Imanager
5
CVSSv2
CVE-2018-1344
Addresses potential communication downgrade attack in NetIQ iManager versions before 3.1
Netiq Imanager
NA
CVE-2022-38758
Cross-site Scripting (XSS) vulnerability in NetIQ iManager prior to version 3.2.6 allows malicious user to execute malicious scripts on the user's browser. This issue affects: Micro Focus NetIQ iManager NetIQ iManager versions before 3.2.6 on ALL.
Netiq Imanager
NA
CVE-2023-24468
Broken access control in Advanced Authentication versions before 6.4.1.1 and 6.3.7.2
Netiq Advanced Authentication
4.3
CVSSv2
CVE-2017-9276
Novell Access Manager iManager prior to 4.3.3 did not validate parameters so that cross site scripting content could be reflected back into the result page using the "a" parameter.
Netiq Access Manager
5
CVSSv2
CVE-2017-9278
The NetIQ Identity Manager Oracle EBS driver prior to 4.0.2.0 sent EBS logs containing the driver authentication password, potentially disclosing this to attackers able to read the EBS tables.
Netiq Identity Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »