Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netiq vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2016-5755
NetIQ Access Manager 4.1 prior to 4.1.2 Hot Fix 1 and 4.2 prior to 4.2.2 was vulnerable to clickjacking attacks due to a missing SAMEORIGIN filter in the "high encryption" setting.
Netiq Access Manager 4.1
Netiq Access Manager 4.2
6.5
CVSSv3
CVE-2016-1605
Directory traversal vulnerability in the ReportViewServlet servlet in the server in NetIQ Sentinel 7.4.x prior to 7.4.2 allows remote malicious users to read arbitrary files via a PREVIEW value for the fileType field.
Netiq Sentinel 7.4
Netiq Sentinel 7.4.1
6.3
CVSSv3
CVE-2022-38753
This update resolves a multi-factor authentication bypass attack
Microfocus Netiq Advanced Authentication
Microfocus Netiq Advanced Authentication 6.4
6.1
CVSSv3
CVE-2022-38758
Cross-site Scripting (XSS) vulnerability in NetIQ iManager prior to version 3.2.6 allows malicious user to execute malicious scripts on the user's browser. This issue affects: Micro Focus NetIQ iManager NetIQ iManager versions before 3.2.6 on ALL.
Netiq Imanager
6.1
CVSSv3
CVE-2021-22531
A bug exist in the input parameter of Access Manager that allows supply of invalid character to trigger cross-site scripting vulnerability. This affects NetIQ Access Manager 4.5 and 5.0
Microfocus Access Manager 4.5
Microfocus Access Manager 5.0
6.1
CVSSv3
CVE-2022-26325
Reflected Cross Site Scripting (XSS) vulnerability in NetIQ Access Manager before 5.0.2
Microfocus Netiq Access Manager
6.1
CVSSv3
CVE-2022-26326
Potential open redirection vulnerability when URL is crafted in specific format in NetIQ Access Manager before 5.0.2
Microfocus Netiq Access Manager
6.1
CVSSv3
CVE-2021-22526
Open Redirection vulnerability in NetIQ Access Manager before 5.0.1 and 4.5.4
Microfocus Access Manager
6.1
CVSSv3
CVE-2019-11647
A potential XSS exists in Self Service Password Reset, in Micro Focus NetIQ Software all versions prior to version 4.4. The vulnerability could be exploited to enable an XSS attack.
Microfocus Netiq Self Service Password Reset
6.1
CVSSv3
CVE-2018-12480
Mitigates an XSS issue in NetIQ Access Manager versions before 4.4 SP3.
Microfocus Access Manager 4.4
Microfocus Access Manager 4.3
Microfocus Access Manager 4.2
Microfocus Access Manager 4.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »