Vulnerabilities > Netiq > Identity Manager > 4.6
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-01-26 | CVE-2022-26329 | Exposure of Resource to Wrong Sphere vulnerability in Netiq Identity Manager File existence disclosure vulnerability in NetIQ Identity Manager plugin prior to version 4.8.5 allows attacker to determine whether a file exists on the filesystem. | 5.3 |
2018-04-26 | CVE-2017-9284 | Information Exposure vulnerability in Netiq Identity Manager 4.6/4.6.1/4.6.2 IDM 4.6 Identity Applications prior to 4.6.2.1 may expose sensitive information. | 7.5 |
2018-03-05 | CVE-2017-7427 | Cross-site Scripting vulnerability in Netiq Identity Manager 4.5/4.6 Multiple cross site scripting attacks were found in the Identity Manager Plug-in, hosted on iManager 2.7.7.7, before Identity Manager 4.6.1. | 6.1 |
2018-03-01 | CVE-2017-7426 | XXE vulnerability in Netiq Identity Manager 4.5/4.6 The NetIQ Identity Manager Plugins before 4.6.1 contained various XML External XML Entity (XXE) handling flaws that could be used by attackers to leak information or cause denial of service attacks. | 9.1 |