File Upload Vulnerability in NetIQ Access Manager Admin Console
CVE-2018-1342

9.8CRITICAL

Key Information:

Vendor: Micro Focus
Status: Netiq Access Manager, Administrative Console
Vendor: CVE Published:; 26 January 2018

🔔 Create Micro Focus Vulnerability Alert

What is CVE-2018-1342?

The NetIQ Access Manager Admin Console contains a vulnerability that allows an attacker to upload malicious files to the server. If exploited, this flaw could enable unauthorized execution of these files, posing significant security risks to the affected systems. This issue impacts specific versions of the NetIQ Access Manager, highlighting the necessity for timely updates and security measures to protect sensitive data.

Affected Version(s)

NetIQ Access Manager, Administrative Console 4.3

NetIQ Access Manager, Administrative Console 4.4

References

https://www.novell.com/support/kb/doc.php?id=7022444

x_refsource_CONFIRM

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 26, 2018
Vulnerability Reserved
Dec 10, 2017