Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netiq vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-9284
IDM 4.6 Identity Applications before 4.6.2.1 may expose sensitive information.
Netiq Identity Manager
5.3
CVSSv3
CVE-2018-1349
The NetIQ Identity Manager driver log file, in versions before 4.7, provides details that could aid in system or configuration enumeration.
Netiq Identity Manager
5.3
CVSSv3
CVE-2018-1350
The NetIQ Identity Manager driver log file, in versions before 4.7, provides details that could aid in system enumeration.
Netiq Identity Manager
6.1
CVSSv3
CVE-2018-12462
NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities.
Netiq Imanager 3.1.1
5.3
CVSSv3
CVE-2022-26329
File existence disclosure vulnerability in NetIQ Identity Manager plugin prior to version 4.8.5 allows malicious user to determine whether a file exists on the filesystem. This issue affects: Micro Focus NetIQ Identity Manager NetIQ Identity Manager versions before 4.8.5 on ALL.
Netiq Identity Manager
6.1
CVSSv3
CVE-2015-0787
XSS in NetIQ Designer for Identity Manager prior to 4.5.3 allows remote malicious users to inject arbitrary HTML code via the accessMgrDN value of the forgotUser.do CGI.
Netiq Identity Manager
9.8
CVSSv3
CVE-2023-24468
Broken access control in Advanced Authentication versions before 6.4.1.1 and 6.3.7.2
Netiq Advanced Authentication
6.1
CVSSv3
CVE-2016-1592
XSS in NetIQ Designer for Identity Manager prior to 4.5.3 allows remote malicious users to inject arbitrary HTML code via the nrfEntitlementReport.do CGI.
Netiq Identity Manager
3.1
CVSSv3
CVE-2017-5190
NetIQ Access Manager 4.2 before SP3 HF1 and 4.3 before SP1 HF1, when configured as a SAML 2.0 Identity Server with Virtual Attributes, has a concurrency issue causing information leakage, related to a stale profile.
Netiq Access Manager
6.1
CVSSv3
CVE-2017-9276
Novell Access Manager iManager prior to 4.3.3 did not validate parameters so that cross site scripting content could be reflected back into the result page using the "a" parameter.
Netiq Access Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »