CVE-2024-3484

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-3484
Path Traversal found in OpenText™ iManager 3.2.6.0200. This can lead to privilege escalation or file disclosure.

5.7 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.1 / Impact : 3.6

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://www.netiq.com/documentation/imanager-32/imanager326_patch3_hf1_releasenotes/data/imanager326_patch3_hf1_releasenotes.html Release Notes
https://www.netiq.com/documentation/imanager-32/imanager326_patch3_hf1_releasenotes/data/imanager326_patch3_hf1_releasenotes.html Release Notes
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microfocus:imanager:*:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:imanager:3.2.6:-:*:*:*:*:*:*
cpe:2.3:a:microfocus:imanager:3.2.6:patch1:*:*:*:*:*:*
cpe:2.3:a:microfocus:imanager:3.2.6:patch2:*:*:*:*:*:*
cpe:2.3:a:microfocus:imanager:3.2.6:patch3:*:*:*:*:*:*
History

21 Jan 2025, 17:31

Type Values Removed Values Added
CPE cpe:2.3:a:microfocus:imanager:3.2.6:patch1:*:*:*:*:*:*
cpe:2.3:a:microfocus:imanager:*:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:imanager:3.2.6:-:*:*:*:*:*:*
cpe:2.3:a:microfocus:imanager:3.2.6:patch2:*:*:*:*:*:*
cpe:2.3:a:microfocus:imanager:3.2.6:patch3:*:*:*:*:*:*
First Time Microfocus
Microfocus imanager
References () https://www.netiq.com/documentation/imanager-32/imanager326_patch3_hf1_releasenotes/data/imanager326_patch3_hf1_releasenotes.html - () https://www.netiq.com/documentation/imanager-32/imanager326_patch3_hf1_releasenotes/data/imanager326_patch3_hf1_releasenotes.html - Release Notes

21 Nov 2024, 09:29

Type Values Removed Values Added
Summary
  • (es) Path Traversal encontrada en OpenText™ iManager 3.2.6.0200. Esto puede conducir a una escalada de privilegios o a la divulgación de archivos.
References () https://www.netiq.com/documentation/imanager-32/imanager326_patch3_hf1_releasenotes/data/imanager326_patch3_hf1_releasenotes.html - () https://www.netiq.com/documentation/imanager-32/imanager326_patch3_hf1_releasenotes/data/imanager326_patch3_hf1_releasenotes.html -

15 May 2024, 17:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-05-15 17:15

Updated : 2025-01-21 17:31

NVD link : CVE-2024-3484

Mitre link : CVE-2024-3484

CVE.ORG link : CVE-2024-3484

JSON object : View

Products Affected

microfocus

  • imanager
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')