Vulnerabilities > Microfocus > Netiq Access Manager

DATE CVE VULNERABILITY TITLE RISK
2024-08-28 CVE-2024-4554 Cross-site Scripting vulnerability in Microfocus Netiq Access Manager 5.0.2
Improper Input Validation vulnerability in OpenText NetIQ Access Manager leads to Cross-Site Scripting (XSS) attack. This issue affects NetIQ Access Manager before 5.0.4.1 and 5.1.
network
low complexity
microfocus CWE-79
5.4
2024-08-28 CVE-2024-4555 Improper Privilege Management vulnerability in Microfocus Netiq Access Manager 5.0.2
Improper Privilege Management vulnerability in OpenText NetIQ Access Manager allows user account impersonation in specific scenario. This issue affects NetIQ Access Manager before 5.0.4.1 and before 5.1
network
low complexity
microfocus CWE-269
7.5
2024-08-28 CVE-2024-4556 Path Traversal vulnerability in Microfocus Netiq Access Manager 5.0.2
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in OpenText NetIQ Access Manager allows access the sensitive information. This issue affects NetIQ Access Manager before 5.0.4 and before 5.1.
network
low complexity
microfocus CWE-22
7.5
2022-05-02 CVE-2022-26325 Cross-site Scripting vulnerability in Microfocus Netiq Access Manager
Reflected Cross Site Scripting (XSS) vulnerability in NetIQ Access Manager prior to 5.0.2
network
low complexity
microfocus CWE-79
6.1
2022-05-02 CVE-2022-26326 Open Redirect vulnerability in Microfocus Netiq Access Manager
Potential open redirection vulnerability when URL is crafted in specific format in NetIQ Access Manager prior to 5.0.2
network
low complexity
microfocus CWE-601
6.1