Vulnerabilities > Netiq > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-11 | CVE-2020-11843 | Unspecified vulnerability in Netiq Access Manager This allows the information exposure to unauthorized users. This issue affects NetIQ Access Manager using version 4.5 or before | 6.5 |
| 2023-01-26 | CVE-2022-26329 | Exposure of Resource to Wrong Sphere vulnerability in Netiq Identity Manager File existence disclosure vulnerability in NetIQ Identity Manager plugin prior to version 4.8.5 allows attacker to determine whether a file exists on the filesystem. | 5.3 |
| 2023-01-26 | CVE-2022-38758 | Cross-site Scripting vulnerability in Netiq Imanager Cross-site Scripting (XSS) vulnerability in NetIQ iManager prior to version 3.2.6 allows attacker to execute malicious scripts on the user's browser. | 6.1 |
| 2018-07-10 | CVE-2018-12462 | Cross-site Scripting vulnerability in Netiq Imanager 3.1.1 NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities. | 6.1 |
| 2018-04-26 | CVE-2017-9275 | Cross-site Scripting vulnerability in Netiq Identity Reporting 5.5 NetIQ Identity Reporting, in versions prior to 5.5 Service Pack 1, is susceptible to an XSS attack. | 6.1 |
| 2018-03-28 | CVE-2018-7676 | Information Exposure vulnerability in Netiq Identity Manager 4.5 The NetIQ Identity Manager, in versions prior to 4.7, userapp with log / trace enabled may leak sensitive information. | 5.9 |
| 2018-03-28 | CVE-2018-7674 | Open Redirect vulnerability in Netiq Identity Manager 4.5 The NetIQ Identity Manager user console, in versions prior to 4.7, is susceptible to URL redirection. | 6.1 |
| 2018-03-26 | CVE-2018-1350 | Information Exposure Through Log Files vulnerability in Netiq Identity Manager 4.5 The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details that could aid in system enumeration. | 5.3 |
| 2018-03-26 | CVE-2018-1349 | Information Exposure Through Log Files vulnerability in Netiq Identity Manager 4.5 The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details that could aid in system or configuration enumeration. | 5.3 |
| 2018-03-21 | CVE-2018-1347 | Cross-site Scripting vulnerability in Netiq Imanager 2.7.7 The administrative web interface in NetIQ iManager, versions prior to 3.1, are vulnerable to reflected cross site scripting. | 6.1 |