Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netiq vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-11674
Man-in-the-middle vulnerability in Micro Focus Self Service Password Reset, affecting all versions before 4.4.0.4. The vulnerability could exploit invalid certificate validation and may result in a man-in-the-middle attack.
Microfocus Netiq Self Service Password Reset
Microfocus Netiq Self Service Password Reset 4.4
4.3
CVSSv2
CVE-2019-11650
A potential Man in the Middle attack (MITM) was found in NetIQ Advanced Authentication Framework versions before 6.0.
Microfocus Netiq Advanced Authentication
4.3
CVSSv2
CVE-2019-11647
A potential XSS exists in Self Service Password Reset, in Micro Focus NetIQ Software all versions prior to version 4.4. The vulnerability could be exploited to enable an XSS attack.
Microfocus Netiq Self Service Password Reset
4.3
CVSSv2
CVE-2018-12480
Mitigates an XSS issue in NetIQ Access Manager versions before 4.4 SP3.
Microfocus Access Manager 4.4
Microfocus Access Manager 4.3
Microfocus Access Manager 4.2
Microfocus Access Manager 4.1
4.3
CVSSv2
CVE-2018-12462
NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities.
Netiq Imanager 3.1.1
4.3
CVSSv2
CVE-2017-9275
NetIQ Identity Reporting, in versions before 5.5 Service Pack 1, is susceptible to an XSS attack.
Netiq Identity Reporting 5.5
Netiq Identity Reporting
4.3
CVSSv2
CVE-2018-7676
The NetIQ Identity Manager, in versions before 4.7, userapp with log / trace enabled may leak sensitive information.
Netiq Identity Manager
4.3
CVSSv2
CVE-2018-1347
The administrative web interface in NetIQ iManager, versions before 3.1, are vulnerable to reflected cross site scripting.
Netiq Imanager
4.3
CVSSv2
CVE-2017-7427
Multiple cross site scripting attacks were found in the Identity Manager Plug-in, hosted on iManager 2.7.7.7, before Identity Manager 4.6.1. In certain scenarios it was possible to execute arbitrary JavaScript code in the context of vulnerable application, via user.Context in the...
Netiq Identity Manager
4.3
CVSSv2
CVE-2017-7437
NetIQ Privileged Account Manager prior to 3.1 Patch Update 3 allowed cross site scripting attacks via the "type" and "account" parameters of json requests.
Netiq Privileged Account Manager 3.1
Netiq Privileged Account Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »