4 matches found
CVE-2017-5185
CVE-2017-5185 affects NetIQ Sentinel Server 8.0 prior to 8.0.1. Multiple sources describe a remote denial of service vulnerability in Sentinel Server that can be exploited over the network. The incident is documented across NVD, CNVD, and related vulnerability feeds, all indicating the same versi...
CVE-2014-3460
Summary (CVE-2014-3460): A directory traversal vulnerability in the DumpToFile method of the NQMcsVarSet ActiveX control (Agent Manager component of NetIQ Sentinel) allows remote attackers to create arbitrary files and potentially execute code via a crafted pathname. Affected products/versions in...
CVE-2018-7675
NetIQ Sentinel prior to 8.1.x suffers a session timeout/authentication issue: when a user idle-logs and another user logs in, the new session may be granted but the previous screen and related events/configuration information can be viewed. This indicates an information disclosure risk tied to th...
CVE-2017-5184
NetIQ Sentinel Server 8.0 prior to 8.0.1 is affected by CVE-2017-5184, which may allow information disclosure (account enumeration) over the network. The OpenVAS entry corroborates leakage of information and notes a remediation path of upgrading to Sentinel 8.0.1. As per the NVD entry, the base i...