Netiq: >> Imanager Security Vulnerabilities
Cross-site Scripting (XSS) vulnerability in NetIQ iManager prior to version 3.2.6 allows attacker to execute malicious scripts on the user's browser. This issue affects: Micro Focus NetIQ iManager NetIQ iManager versions prior to 3.2.6 on ALL.
CVSS Score
7.2
EPSS Score
0.004
Published
2023-01-26
NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities.
CVSS Score
4.8
EPSS Score
0.006
Published
2018-07-10
Addresses potential communication downgrade attack in NetIQ iManager versions prior to 3.1
CVSS Score
3.1
EPSS Score
0.009
Published
2018-03-21
NetIQ iManager, versions prior to 3.1, under some circumstances could be susceptible to an elevation of privilege attack.
CVSS Score
5.9
EPSS Score
0.007
Published
2018-03-21
The administrative web interface in NetIQ iManager, versions prior to 3.1, are vulnerable to reflected cross site scripting.
CVSS Score
5.3
EPSS Score
0.007
Published
2018-03-21
NetIQ iManager before 3.0.3 delivered a SSL private key in a Java application (JAR file) for authentication to Sentinel, allowing attackers to extract and establish their own connections to the Sentinel appliance.
CVSS Score
4.3
EPSS Score
0.012
Published
2018-03-02
Multiple potential reflected XSS issues exist in NetIQ iManager versions before 2.7.7 Patch 10 HF2 and 3.0.3.2.
CVSS Score
7.6
EPSS Score
0.009
Published
2017-11-06
NetIQ iManager 3.x before 3.0.3.1 has an issue in the renegotiation of connection parameters with Tomcat.
CVSS Score
5.3
EPSS Score
0.013
Published
2017-05-03
Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a persistent XSS vulnerability in Framework.
CVSS Score
6.1
EPSS Score
0.01
Published
2017-05-03
Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have persistent CSRF in object management.
CVSS Score
8.8
EPSS Score
0.006
Published
2017-05-03
Page 1