Lucene search
K

5 matches found

CVE
CVE
added 2021/03/26 1:37 p.m.1012 views

CVE-2021-22506

Mode C: Affected product is Micro Focus Access Manager prior to version 5.0. The connected documents describe an Information Leakage vulnerability (CVE-2021-22506) in the Access Manager, arising from an advance configuration exposure that could disclose information. The Nessus entry additionally ...

7.5CVSS7.6AI score0.25695EPSS
In wild
CVE
CVE
added 2021/03/26 1:41 p.m.55 views

CVE-2020-25840

The CVE-2020-25840 entry concerns a Cross‑Site Scripting (XSS) vulnerability in Micro Focus Access Manager. Affected software is Micro Focus Access Manager prior to version 5.0. The underlying impact described is potential configuration destruction. No explicit exploit details or in‑the‑wild indi...

6.1CVSS6.2AI score0.00613EPSS
CVE
CVE
added 2018/11/20 6:0 p.m.51 views

CVE-2018-17948

The vulnerability CVE-2018-17948 is described as an open redirect in the Access Manager Identity Provider prior to 4.4 SP3. The primary documented impact areas are limited to the redirect mechanism; CVSS metrics indicate a MEDIUM severity (CVSS v3.0: 6.1) with NETWORK access, no privileges requir...

6.1CVSS6.2AI score0.00648EPSS
CVE
CVE
added 2021/03/25 3:56 p.m.42 views

CVE-2021-22496

CVE-2021-22496 describes an authentication bypass vulnerability in Micro Focus Access Manager (including the Appliance), affecting all versions prior to 4.5.3.3. The flaw enables bypassing authentication and can lead to information leakage as described in multiple sources (NVD, Red Hat, CNVD, etc...

7.5CVSS7.3AI score0.01131EPSS
CVE
CVE
added 2021/09/02 4:56 p.m.39 views

CVE-2021-22525

NetIQ Access Manager CVE-2021-22525 describes an information-leakage vulnerability in NAM prior to version 5.0.1. The root cause is insufficient privilege controls that can disclose sensitive information (confidentiality impact reported as HIGH in CVSS data). Affected product/component: NetIQ Acc...

5.5CVSS5.3AI score0.00241EPSS