Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netiq vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2017-7437
NetIQ Privileged Account Manager prior to 3.1 Patch Update 3 allowed cross site scripting attacks via the "type" and "account" parameters of json requests.
Netiq Privileged Account Manager 3.1
Netiq Privileged Account Manager
5.9
CVSSv3
CVE-2019-11674
Man-in-the-middle vulnerability in Micro Focus Self Service Password Reset, affecting all versions before 4.4.0.4. The vulnerability could exploit invalid certificate validation and may result in a man-in-the-middle attack.
Microfocus Netiq Self Service Password Reset
Microfocus Netiq Self Service Password Reset 4.4
8.6
CVSSv3
CVE-2018-1344
Addresses potential communication downgrade attack in NetIQ iManager versions before 3.1
Netiq Imanager
7.5
CVSSv3
CVE-2018-1346
Addresses denial of service attack to eDirectory versions before 9.1.
Netiq Edirectory
6.1
CVSSv3
CVE-2022-38758
Cross-site Scripting (XSS) vulnerability in NetIQ iManager prior to version 3.2.6 allows malicious user to execute malicious scripts on the user's browser. This issue affects: Micro Focus NetIQ iManager NetIQ iManager versions before 3.2.6 on ALL.
Netiq Imanager
8.8
CVSSv3
CVE-2018-1345
NetIQ iManager, versions before 3.1, under some circumstances could be susceptible to an elevation of privilege attack.
Netiq Imanager
6.1
CVSSv3
CVE-2018-1347
The administrative web interface in NetIQ iManager, versions before 3.1, are vulnerable to reflected cross site scripting.
Netiq Imanager
6.1
CVSSv3
CVE-2017-14801
Reflected XSS in the NetIQ Access Manager prior to 4.3.3 allowed malicious users to reflect back xss into the called page using the url parameter.
Netiq Access Manager
6.1
CVSSv3
CVE-2017-14802
Novell Access Manager Admin Console and IDP servers prior to 4.3.3 have a URL that could be used by remote malicious users to trigger unvalidated redirects to third party sites.
Netiq Access Manager
6.1
CVSSv3
CVE-2015-0787
XSS in NetIQ Designer for Identity Manager prior to 4.5.3 allows remote malicious users to inject arbitrary HTML code via the accessMgrDN value of the forgotUser.do CGI.
Netiq Identity Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »