Check CVE Id
Check CWE Id
NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities.
The administrative web interface in NetIQ iManager, versions prior to 3.1, are vulnerable to reflected cross site scripting.
NetIQ iManager, versions prior to 3.1, under some circumstances could be susceptible to an elevation of privilege attack.
Addresses potential communication downgrade attack in NetIQ iManager versions prior to 3.1
NetIQ iManager before 3.0.3 delivered a SSL private key in a Java application (JAR file) for authentication to Sentinel, allowing attackers to extract and establish their own connections to the Sentinel appliance.
Multiple potential reflected XSS issues exist in NetIQ iManager versions before 2.7.7 Patch 10 HF2 and 126.96.36.199.
Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 188.8.131.52 have a webshell upload vulnerability.
Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 184.108.40.206 have persistent CSRF in object management.
Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 220.127.116.11 have a persistent XSS vulnerability in Framework.
NetIQ iManager 3.x before 18.104.22.168 has an issue in the renegotiation of connection parameters with Tomcat.
Back to Top