Multiple potential reflected XSS issues exist in NetIQ iManager versions before 2.7.7 Patch 10 HF2 and 3.0.3.2.
CVSS Vector
CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:HNetiq Imanager
APPNetiq3.0.3.2≤ 2.7.7
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
XSS
CWE
References
Related vulnerabilities
CVE-2017-7432CRITICAL9.8ten sam produkt
Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a webshell upload...
CVE-2022-38758HIGH7.2ten sam produkt
Cross-site Scripting (XSS) vulnerability in NetIQ iManager prior to version 3.2.6 allows attacker to execute m...
CVE-2017-7431HIGH8.8ten sam produkt
Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have persistent CSRF i...
CVE-2017-5186HIGH7.5ten sam produkt
Novell iManager 2.7 before SP7 Patch 9, NetIQ iManager 3.x before 3.0.2.1, Novell eDirectory 8.8.x before 8.8 ...
CVE-2018-12462MEDIUM4.8ten sam produkt
NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities.