Vulnerabilities > Netiq
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-15 | CVE-2023-24468 | Unspecified vulnerability in Netiq Advanced Authentication 6.3.0.0/6.4.0.0/6.4.1.0 Broken access control in Advanced Authentication versions prior to 6.4.1.1 and 6.3.7.2 | 9.8 |
| 2023-01-26 | CVE-2022-26329 | Exposure of Resource to Wrong Sphere vulnerability in Netiq Identity Manager File existence disclosure vulnerability in NetIQ Identity Manager plugin prior to version 4.8.5 allows attacker to determine whether a file exists on the filesystem. | 5.3 |
| 2023-01-26 | CVE-2022-38758 | Cross-site Scripting vulnerability in Netiq Imanager Cross-site Scripting (XSS) vulnerability in NetIQ iManager prior to version 3.2.6 allows attacker to execute malicious scripts on the user's browser. | 6.1 |
| 2019-06-24 | CVE-2019-11648 | Information Exposure vulnerability in Netiq Self Service Password Reset An information leakage exists in Micro Focus NetIQ Self Service Password Reset Software all versions prior to version 4.4. | 7.5 |
| 2018-07-10 | CVE-2018-12462 | Cross-site Scripting vulnerability in Netiq Imanager 3.1.1 NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities. | 6.1 |
| 2018-07-10 | CVE-2018-12461 | Improper Certificate Validation vulnerability in Netiq Edirectory 9.1.1 Fixed issues with NetIQ eDirectory prior to 9.1.1 when checking certificate revocation. | 7.5 |
| 2018-04-26 | CVE-2017-9284 | Information Exposure vulnerability in Netiq Identity Manager 4.6/4.6.1/4.6.2 IDM 4.6 Identity Applications prior to 4.6.2.1 may expose sensitive information. | 7.5 |
| 2018-04-26 | CVE-2017-9275 | Cross-site Scripting vulnerability in Netiq Identity Reporting 5.5 NetIQ Identity Reporting, in versions prior to 5.5 Service Pack 1, is susceptible to an XSS attack. | 6.1 |
| 2018-03-28 | CVE-2018-7676 | Information Exposure vulnerability in Netiq Identity Manager 4.5 The NetIQ Identity Manager, in versions prior to 4.7, userapp with log / trace enabled may leak sensitive information. | 5.9 |
| 2018-03-28 | CVE-2018-7674 | Open Redirect vulnerability in Netiq Identity Manager 4.5 The NetIQ Identity Manager user console, in versions prior to 4.7, is susceptible to URL redirection. | 6.1 |