5 matches found
CVE-2022-26325
NetIQ Access Manager is affected by a reflected XSS in versions prior to 5.0.2. The vulnerability stems from insufficient input validation/output filtering of user-supplied data, enabling execution of JavaScript in the user’s browser. Impact is client-side script execution for targeted users; no ...
CVE-2022-26326
Summary: CVE-2022-26326 is a potential open redirect vulnerability in Micro Focus NetIQ Access Manager prior to 5.0.2. The issue arises when a URL is crafted in a specific format, enabling redirection to an attacker-controlled or unintended location. Affected product/scope (as per provided docume...
CVE-2024-4554
OpenText NetIQ Access Manager is affected by an XSS vulnerability caused by improper input validation. Affected versions are prior to 5.0.4.1 and 5.1. The issue arises from improper input handling in the product’s web-facing components, enabling cross-site scripting under user-controlled input. R...
CVE-2024-4556
CV E-2024-4556 (NetIQ Access Manager) shows a Path Traversal vulnerability in OpenText NetIQ Access Manager. The issue allows access to sensitive information by improper limitation of a pathname to restricted directories. Affected product: OpenText NetIQ Access Manager before 5.0.4 and before 5.1...
CVE-2024-4555
CVE-2024-4555 affects OpenText NetIQ Access Manager. The vulnerability is described as Improper Privilege Management that allows user impersonation in a specific scenario. Affected versions are prior to 5.0.4.1 and prior to 5.1. Public documents across NVD, Red Hat, CNNVD, PT-Security, and others...