Vulnerability Details CVE-2017-14802
Novell Access Manager Admin Console and IDP servers before 4.3.3 have a URL that could be used by remote attackers to trigger unvalidated redirects to third party sites.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.9%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 5.8
References
Products affected by CVE-2017-14802
-
cpe:2.3:a:netiq:access_manager:4.0
-
cpe:2.3:a:netiq:access_manager:4.0.1
-
cpe:2.3:a:netiq:access_manager:4.1
-
cpe:2.3:a:netiq:access_manager:4.2
-
cpe:2.3:a:netiq:access_manager:4.3