Known Vulnerabilities for products from Netiq
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Netiq".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-24468 json | Broken access control in Advanced Authentication versions prior to 6.4.1.1 and 6.3.7.2 | 9.8 - CRITICAL | 2023-03-15 | 2023-11-07 |
| CVE-2022-38758 json | Cross-site Scripting (XSS) vulnerability in NetIQ iManager prior to version 3.2.6 allows attacker to execute malicious script... | 6.1 - MEDIUM | 2023-01-26 | 2023-11-07 |
| CVE-2022-26329 json | File existence disclosure vulnerability in NetIQ Identity Manager plugin prior to version 4.8.5 allows attacker to determine ... | 5.3 - MEDIUM | 2023-01-26 | 2023-11-07 |
| CVE-2019-11648 json | An information leakage exists in Micro Focus NetIQ Self Service Password Reset Software all versions prior to version 4.4. Th... | 7.5 - HIGH | 2019-06-24 | 2023-11-07 |
| CVE-2018-12462 json | NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities. | 6.1 - MEDIUM | 2018-07-10 | 2023-11-07 |
| CVE-2018-12461 json | Fixed issues with NetIQ eDirectory prior to 9.1.1 when checking certificate revocation. | 7.5 - HIGH | 2018-07-10 | 2023-11-07 |
| CVE-2018-7692 json | Unvalidated redirect vulnerability in in NetIQ eDirectory before 9.1.1 HF1. | 6.1 - MEDIUM | 2018-08-09 | 2023-11-07 |
| CVE-2018-7686 json | Information leakage vulnerability in NetIQ eDirectory before 9.1.1 HF1 due to shared memory usage. | 7.5 - HIGH | 2018-08-09 | 2023-11-07 |
| CVE-2018-7678 json | A cross site scripting vulnerability exist in the Administration Console in NetIQ Access Manager (NAM) 4.3 and 4.4. | 4.8 - MEDIUM | 2018-03-14 | 2023-11-07 |
| CVE-2018-7677 json | A CSRF exposure exists in NetIQ Access Manager (NAM) 4.4 Identity Server component. | 8.8 - HIGH | 2018-03-14 | 2023-11-07 |
| CVE-2018-7676 json | The NetIQ Identity Manager, in versions prior to 4.7, userapp with log / trace enabled may leak sensitive information. | 5.9 - MEDIUM | 2018-03-28 | 2023-11-07 |
| CVE-2018-7675 json | In NetIQ Sentinel before 8.1.x, a Sentinel user is logged into the Sentinel Web Interface. After performing some tasks within... | 5.3 - MEDIUM | 2018-03-07 | 2023-11-07 |
| CVE-2018-7674 json | The NetIQ Identity Manager user console, in versions prior to 4.7, is susceptible to URL redirection. | 6.1 - MEDIUM | 2018-03-28 | 2023-11-07 |
| CVE-2018-7673 json | The NetIQ Identity Manager communication channel, in versions prior to 4.7, is susceptible to a DoS attack. | 7.5 - HIGH | 2018-03-26 | 2023-11-07 |
| CVE-2018-1350 json | The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details that could aid in system enumeration. | 5.3 - MEDIUM | 2018-03-26 | 2023-11-07 |
| CVE-2018-1349 json | The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details that could aid in system or configurat... | 5.3 - MEDIUM | 2018-03-26 | 2023-11-07 |
| CVE-2018-1348 json | NetIQ Identity Manager driver, in versions prior to 4.7, allows for an SSL handshake renegotiation which could result in a MI... | 7.4 - HIGH | 2018-03-26 | 2023-11-07 |
| CVE-2018-1347 json | The administrative web interface in NetIQ iManager, versions prior to 3.1, are vulnerable to reflected cross site scripting. | 6.1 - MEDIUM | 2018-03-21 | 2023-11-07 |
| CVE-2018-1346 json | Addresses denial of service attack to eDirectory versions prior to 9.1. | 7.5 - HIGH | 2018-03-21 | 2023-11-07 |
| CVE-2018-1345 json | NetIQ iManager, versions prior to 3.1, under some circumstances could be susceptible to an elevation of privilege attack. | 8.8 - HIGH | 2018-03-21 | 2023-11-07 |
Known software with vulnerabilities from Netiq
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Netiq | Access Manager | 4.0 |
| Application | Netiq | Analysis Center | 2.5.0 |
| Application | Netiq | Appmanager Agent | 7.0.10160.0 |
| Application | Netiq | Appmanager Console | 7.0.10160.0 |
| Application | Netiq | Appmanager Control Center | 7.0.10160.0 |
| Application | Netiq | Appmanager Diagnostic Console | 2.1.0.0 |
| Application | Netiq | Appmanager Management Server | 7.0.41053.16 |
| Application | Netiq | Appmanager Repository Installation | 7.0.10160.0 |
| Application | Netiq | Appmanager Repository Slovenia Qdb | 7.0.11248.0 |
| Application | Netiq | Appmanager Web Management Server | 7.0.41039.0 |
| Application | Netiq | Core Services | 5.7.0.390 |
| Application | Netiq | Edirectory | 8.8.6.0 |
| Application | Netiq | Endpoint | 5.0.3186 |
| Application | Netiq | Identity Reporting | 5.5 |
| Application | Netiq | Imanager | 2.7.7 |
| Application | Netiq | Namespace Server | 2.54 |
| Application | Netiq | Privileged User Manager | 2.3.0 |
| Application | Netiq | Secure Configuration Manager | 5.7.0.390 |
| Application | Netiq | Security Manager | 6.0.0.194 |
| Application | Netiq | Security Manager Agent | 6.0.0.194 |