Vulnerabilities > Microfocus > Netiq Advanced Authentication > 4.12

DATE CVE VULNERABILITY TITLE RISK
2022-11-28 CVE-2022-38753 Unspecified vulnerability in Microfocus Netiq Advanced Authentication
This update resolves a multi-factor authentication bypass attack
network
low complexity
microfocus
6.3
2021-07-12 CVE-2021-22515 Incorrect Authorization vulnerability in Microfocus Netiq Advanced Authentication
Multi-Factor Authentication (MFA) functionality can be bypassed, allowing the use of single factor authentication in NetIQ Advanced Authentication versions prior to 6.3 SP4 Patch 1.
network
low complexity
microfocus CWE-863
6.5
2021-04-12 CVE-2021-22497 Improper Authentication vulnerability in Microfocus Netiq Advanced Authentication
Advanced Authentication versions prior to 6.3 SP4 have a potential broken authentication due to improper session management issue.
network
low complexity
microfocus CWE-287
7.2
2019-07-10 CVE-2019-11650 Unspecified vulnerability in Microfocus Netiq Advanced Authentication
A potential Man in the Middle attack (MITM) was found in NetIQ Advanced Authentication Framework versions prior to 6.0.
network
high complexity
microfocus
5.9