Netiq: >> Access Manager >> 4.3.1 Security Vulnerabilities
NetIQ Access Manager 4.2.2 and 4.3.x before 4.3.1+, when configured as an Identity Server, has XSS in the AssertionConsumerServiceURL field of a signed AuthnRequest in a samlp:AuthnRequest document.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-04-20