14.4

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

broadcom

NVD

Published: 2022-12-16

Updated: 2023-08-08

Summary

An unauthenticated user can access Identity Manager’s management console specific page URLs. However, the system doesn’t allow the user to carry out server side tasks without a valid web session.

Vulnerable Configurations

Part	Description	Count
Application	Broadcom Broadcom Symantec Identity Governance AND Administration 14.3 Broadcom Symantec Identity Governance AND Administration 14.4	2

References

https://support.broadcom.com/external/content/SecurityAdvisories/0/21136