microfocus

access_manager

11 known vulnerabilities · sorted by CVSS score

CVE-2021-22528

HIGH8.0

Reflected Cross Site Scripting (XSS) vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4

microfocus / access_manager+1

Network

Published Sep 13, 2021

CVE-2021-22496

HIGH7.5

Authentication Bypass Vulnerability in Micro Focus Access Manager Product, affects all version prior to version 4.5.3.3. The vulnerability could cause information leakage.

microfocus / access_manager

Network

Published Mar 25, 2021

CVE-2021-22506

HIGH7.5

Advance configuration exposing Information Leakage vulnerability in Micro Focus Access Manager product, affects all versions prior to version 5.0. The vulnerability could cause information leakage.

microfocus / access_manager

Network

Published Mar 26, 2021

CVE-2018-12480

MEDIUM6.1

Mitigates an XSS issue in NetIQ Access Manager versions prior to 4.4 SP3.

microfocus / access_manager+7

Network

Published Nov 15, 2018

CVE-2018-17948

MEDIUM6.1

An open redirect vulnerability exists in the Access Manager Identity Provider prior to 4.4 SP3.

microfocus / access_manager+3

Network

Published Nov 20, 2018

CVE-2020-25840

MEDIUM6.1

Cross-Site scripting vulnerability in Micro Focus Access Manager product, affects all version prior to version 5.0. The vulnerability could cause configuration destruction.

microfocus / access_manager

Network

Published Mar 26, 2021

CVE-2021-22531

MEDIUM6.1

A bug exist in the input parameter of Access Manager that allows supply of invalid character to trigger cross-site scripting vulnerability. This affects NetIQ Access Manager 4.5 and 5.0

microfocus / access_manager+14

Network

Published May 12, 2022

CVE-2021-22527

MEDIUM6.0

Information leakage vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4

microfocus / access_manager+1

Network

Published Sep 13, 2021

CVE-2021-22525

MEDIUM5.5

This release addresses a potential information leakage vulnerability in NetIQ Access Manager versions prior to 5.0.1