Vulnerabilities > Netiq > Access Manager > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-26 | CVE-2018-1342 | Unrestricted Upload of File with Dangerous Type vulnerability in Netiq Access Manager 4.3/4.4 A Vulnerability exists on Admin Console where an attacker can upload files to the Admin Console server, and potentially execute them. | 9.8 |
| 2018-01-20 | CVE-2017-14803 | Unspecified vulnerability in Netiq Access Manager 4.3/4.4 In NetIQ Access Manager 4.3 and 4.4, a bug exists in Identity Server when accessing a basic SSO connector and downloading the BasicSSO connector plugins on IE11 where an attacker can execute arbitrary code on the system. | 9.8 |
| 2017-03-23 | CVE-2016-5757 | Information Exposure vulnerability in Netiq Access Manager 4.1/4.2 iManager Admin Console in NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 was vulnerable to iFrame manipulation attacks, which could allow remote users to gain access to authentication credentials. | 9.8 |