RSS   Vulnerabilities for 'Imanager'   RSS

2018-07-10
 
CVE-2018-12462

CWE-79
 

 
NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities.

 
2018-03-02
 
CVE-2017-5189

CWE-287
 

 
NetIQ iManager before 3.0.3 delivered a SSL private key in a Java application (JAR file) for authentication to Sentinel, allowing attackers to extract and establish their own connections to the Sentinel appliance.

 
2017-11-06
 
CVE-2017-7425

CWE-79
 

 
Multiple potential reflected XSS issues exist in NetIQ iManager versions before 2.7.7 Patch 10 HF2 and 3.0.3.2.

 
2017-05-03
 
CVE-2017-7432

 

 
Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a webshell upload vulnerability.

 
 
CVE-2017-7431

 

 
Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have persistent CSRF in object management.

 
 
CVE-2017-7430

 

 
Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a persistent XSS vulnerability in Framework.

 
 
CVE-2017-7428

 

 
NetIQ iManager 3.x before 3.0.3.1 has an issue in the renegotiation of connection parameters with Tomcat.

 
2017-04-27
 
CVE-2017-5186

 

 
Novell iManager 2.7 before SP7 Patch 9, NetIQ iManager 3.x before 3.0.2.1, Novell eDirectory 8.8.x before 8.8 SP8 Patch 9 Hotfix 2, and NetIQ eDirectory 9.x before 9.0.2 Hotfix 2 (9.0.2.2) use the deprecated MD5 hashing algorithm in a communications certificate.

 

 >>> Vendor: Netiq 15 Products
Pssecure
Edirectory
Privileged user manager
Sentinel
Sentinel agent manager
Security manager
Access manager
Security solutions for iseries
Self service password reset
Access governance suite
Sentinel server
Imanager
Privileged account manager
Identity manager
Identity reporting


Copyright 2019, cxsecurity.com

 

Back to Top