5 matches found
CVE-2021-22506
Mode C: Affected product is Micro Focus Access Manager prior to version 5.0. The connected documents describe an Information Leakage vulnerability (CVE-2021-22506) in the Access Manager, arising from an advance configuration exposure that could disclose information. The Nessus entry additionally ...
CVE-2020-25840
The CVE-2020-25840 entry concerns a Cross‑Site Scripting (XSS) vulnerability in Micro Focus Access Manager. Affected software is Micro Focus Access Manager prior to version 5.0. The underlying impact described is potential configuration destruction. No explicit exploit details or in‑the‑wild indi...
CVE-2018-17948
The vulnerability CVE-2018-17948 is described as an open redirect in the Access Manager Identity Provider prior to 4.4 SP3. The primary documented impact areas are limited to the redirect mechanism; CVSS metrics indicate a MEDIUM severity (CVSS v3.0: 6.1) with NETWORK access, no privileges requir...
CVE-2021-22496
CVE-2021-22496 describes an authentication bypass vulnerability in Micro Focus Access Manager (including the Appliance), affecting all versions prior to 4.5.3.3. The flaw enables bypassing authentication and can lead to information leakage as described in multiple sources (NVD, Red Hat, CNVD, etc...
CVE-2021-22525
NetIQ Access Manager CVE-2021-22525 describes an information-leakage vulnerability in NAM prior to version 5.0.1. The root cause is insufficient privilege controls that can disclose sensitive information (confidentiality impact reported as HIGH in CVSS data). Affected product/component: NetIQ Acc...