3 matches found
CVE-2014-5215
NetIQ Access Manager (NAM) 4.x prior to 4.0.1 HF3 is affected by CVE-2014-5215. An authenticated administrator can disclose service-account passwords via requests to roma/jsp/volsc/monitoring/dev_services.jsp or roma/jsp/debug/debug.jsp, constituting an information-disclosure vulnerability (impac...
CVE-2014-9412
Technical details for CVE-2014-9412 are not publicly available in the provided documents; monitor for updates.
CVE-2014-5216
NetIQ Access Manager (NAM) 4.x is affected by multiple reflected XSS vulnerabilities (CVE-2014-5216) in NAM prior to 4.0.1 HF3. The issues allow remote attackers to inject arbitrary script via (1) location in dev.Empty to nps/servlet/webacc, (2) error in nidp/jsp/x509err.jsp, (3) lang in sslvpn/a...