6.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
37.8%
An unfiltered finalizer target URL in the SAML processing feature in Identity Server in NetIQ Access Manager 4.1 before 4.1.2 HF1 and 4.2 before 4.2.2 could be used to trigger XSS and leak authentication credentials.