Improper Privilege Management vulnerability in OpenText NetIQ Access Manager allows user account impersonation in specific scenario. This issue affects NetIQ Access Manager before 5.0.4.1 and before 5.1
References
Link | Resource |
---|---|
https://www.microfocus.com/documentation/access-manager/5.0/accessmanager504-p1-release-notes/accessmanager504-p1-release-notes.html | Release Notes Vendor Advisory |
https://www.microfocus.com/documentation/access-manager/5.1/accessmanager51-release-notes/accessmanager51-release-notes.html | Release Notes Vendor Advisory |
Configurations
History
12 Sep 2024, 15:13
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
References | () https://www.microfocus.com/documentation/access-manager/5.0/accessmanager504-p1-release-notes/accessmanager504-p1-release-notes.html - Release Notes, Vendor Advisory | |
References | () https://www.microfocus.com/documentation/access-manager/5.1/accessmanager51-release-notes/accessmanager51-release-notes.html - Release Notes, Vendor Advisory | |
CPE | cpe:2.3:a:microfocus:netiq_access_manager:*:*:*:*:*:*:*:* | |
First Time |
Microfocus
Microfocus netiq Access Manager |
28 Aug 2024, 12:57
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
28 Aug 2024, 07:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-08-28 07:15
Updated : 2024-09-12 15:13
NVD link : CVE-2024-4555
Mitre link : CVE-2024-4555
CVE.ORG link : CVE-2024-4555
JSON object : View
Products Affected
microfocus
- netiq_access_manager
CWE
CWE-269
Improper Privilege Management