Vulnerabilities > Netiq

DATE CVE VULNERABILITY TITLE RISK
2019-06-24 CVE-2019-11648 Information Exposure vulnerability in Netiq Self Service Password Reset
An information leakage exists in Micro Focus NetIQ Self Service Password Reset Software all versions prior to version 4.4.
network
low complexity
netiq CWE-200
5.0
2018-07-10 CVE-2018-12462 Cross-Site Scripting vulnerability in Netiq Imanager 3.1.1
NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities.
network
netiq CWE-79
4.3
2018-07-10 CVE-2018-12461 Improper Certificate Validation vulnerability in Netiq Edirectory 9.1.1
Fixed issues with NetIQ eDirectory prior to 9.1.1 when checking certificate revocation.
network
low complexity
netiq CWE-295
5.0
2018-04-26 CVE-2017-9284 Information Exposure vulnerability in Netiq Identity Manager
IDM 4.6 Identity Applications prior to 4.6.2.1 may expose sensitive information.
network
low complexity
netiq CWE-200
5.0
2018-04-26 CVE-2017-9275 Cross-Site Scripting vulnerability in Netiq Identity Reporting 5.5
NetIQ Identity Reporting, in versions prior to 5.5 Service Pack 1, is susceptible to an XSS attack.
network
netiq CWE-79
4.3
2018-03-28 CVE-2018-7676 Information Exposure vulnerability in Netiq Identity Manager
The NetIQ Identity Manager, in versions prior to 4.7, userapp with log / trace enabled may leak sensitive information.
network
netiq CWE-200
4.3
2018-03-28 CVE-2018-7674 Open Redirect vulnerability in Netiq Identity Manager
The NetIQ Identity Manager user console, in versions prior to 4.7, is susceptible to URL redirection.
network
netiq CWE-601
5.8
2018-03-26 CVE-2018-7673 Unspecified vulnerability in Netiq Identity Manager
The NetIQ Identity Manager communication channel, in versions prior to 4.7, is susceptible to a DoS attack.
network
low complexity
netiq
5.0
2018-03-26 CVE-2018-1350 Information Exposure Through LOG Files vulnerability in Netiq Identity Manager
The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details that could aid in system enumeration.
network
low complexity
netiq CWE-532
5.0
2018-03-26 CVE-2018-1349 Information Exposure Through LOG Files vulnerability in Netiq Identity Manager
The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details that could aid in system or configuration enumeration.
network
low complexity
netiq CWE-532
5.0