Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Access_manager
(Netiq)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 24 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-06-11 | CVE-2020-11843 | This allows the information exposure to unauthorized users. This issue affects NetIQ Access Manager using version 4.5 or before | Access_manager | 6.5 | ||
| 2017-03-23 | CVE-2016-5748 | External Entity Processing (XXE) vulnerability in the "risk score" application of NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 could be used to disclose the content of local files to logged-in users. | Access_manager | 5.5 | ||
| 2017-03-23 | CVE-2016-5749 | NetIQ Access Manager 4.1 before 4.1.2 HF 1 and 4.2 before 4.2.2 was parsing incoming SAML requests with external entity resolution enabled, which could lead to local file disclosure via an XML External Entity (XXE) attack. | Access_manager | 5.5 | ||
| 2017-03-23 | CVE-2016-5750 | The certificate upload feature in iManager in NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 could be used to upload JSP pages that would be executed as the iManager user, allowing code execution by logged-in remote users. | Access_manager | 8.8 |