4 matches found
CVE-2017-9279
NetIQ Identity Manager before 4.5.6.1 allowed uploading files with double extensions or non-image content in the Themes handling of the User Application Administration, allowing malicious user administrators to potentially execute code or mislead users...
Design/Logic Flaw
NetIQ Identity Manager before 4.5.6.1 allowed uploading files with double extensions or non-image content in the Themes handling of the User Application Administration, allowing malicious user administrators to potentially execute code or mislead users...
CVE-2017-9279
NetIQ Identity Manager before 4.5.6.1 allowed uploading files with double extensions or non-image content in the Themes handling of the User Application Administration, allowing malicious user administrators to potentially execute code or mislead users...
CVE-2017-9279
CVE-2017-9279 affects NetIQ Identity Manager prior to 4.5.6.1. In the Themes handling of the User Application Administration, it allows uploading files with double extensions or non-image content, enabling a malicious administrator to potentially execute code or mislead users. Root cause: insuffi...