Vulnerabilities > Netiq

DATE CVE VULNERABILITY TITLE RISK
2019-06-24 CVE-2019-11648 Information Exposure vulnerability in Netiq Self Service Password Reset
An information leakage exists in Micro Focus NetIQ Self Service Password Reset Software all versions prior to version 4.4.
network
low complexity
netiq CWE-200
5.0
2018-08-09 CVE-2018-7692 Open Redirect vulnerability in Netiq Edirectory
Unvalidated redirect vulnerability in in NetIQ eDirectory before 9.1.1 HF1.
network
netiq CWE-601
5.8
2018-08-09 CVE-2018-7686 Information Exposure vulnerability in Netiq Edirectory
Information leakage vulnerability in NetIQ eDirectory before 9.1.1 HF1 due to shared memory usage.
network
low complexity
netiq CWE-200
5.0
2018-07-10 CVE-2018-12462 Cross-Site Scripting vulnerability in Netiq Imanager 3.1.1
NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities.
network
netiq CWE-79
4.3
2018-07-10 CVE-2018-12461 Improper Certificate Validation vulnerability in Netiq Edirectory 9.1.1
Fixed issues with NetIQ eDirectory prior to 9.1.1 when checking certificate revocation.
network
low complexity
netiq CWE-295
5.0
2018-04-26 CVE-2017-9284 Information Exposure vulnerability in Netiq Identity Manager
IDM 4.6 Identity Applications prior to 4.6.2.1 may expose sensitive information.
network
low complexity
netiq CWE-200
5.0
2018-04-26 CVE-2017-9275 Cross-Site Scripting vulnerability in Netiq Identity Reporting 5.5
NetIQ Identity Reporting, in versions prior to 5.5 Service Pack 1, is susceptible to an XSS attack.
network
netiq CWE-79
4.3
2018-03-28 CVE-2018-7676 Information Exposure vulnerability in Netiq Identity Manager
The NetIQ Identity Manager, in versions prior to 4.7, userapp with log / trace enabled may leak sensitive information.
network
netiq CWE-200
4.3
2018-03-28 CVE-2018-7674 Open Redirect vulnerability in Netiq Identity Manager
The NetIQ Identity Manager user console, in versions prior to 4.7, is susceptible to URL redirection.
network
netiq CWE-601
5.8
2018-03-26 CVE-2018-7673 Unspecified vulnerability in Netiq Identity Manager
The NetIQ Identity Manager communication channel, in versions prior to 4.7, is susceptible to a DoS attack.
network
low complexity
netiq
5.0