CVE-2017-14800

A reflected cross site scripting attack in the NetIQ Access Manager before 4.3.3 using the "typecontainerid" parameter of the policy editor could allowed code injection into pages of authenticated users.
Configurations

Configuration 1 (hide)

cpe:2.3:a:netiq:access_manager:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-03-01 20:29

Updated : 2024-02-04 19:46


NVD link : CVE-2017-14800

Mitre link : CVE-2017-14800

CVE.ORG link : CVE-2017-14800


JSON object : View

Products Affected

netiq

  • access_manager
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')