NetIQ Access Manager Vulnerability Leads to XSS Attacks
CVE-2024-4554

5.4MEDIUM

Key Information:

Vendor: Opentext
Status: Netiq Access Manager
Vendor: CVE Published:; 28 August 2024

What is CVE-2024-4554?

Improper Input Validation vulnerability in OpenText NetIQ Access Manager leads to Cross-Site Scripting (XSS) attack. This issue affects NetIQ Access Manager before 5.0.4.1 and 5.1.

Affected Version(s)

NetIQ Access Manager Linux 5.0.4.1

NetIQ Access Manager Linux 5.1

References

https://www.microfocus.com/documentation/access-manager/5...

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 28, 2024
Vulnerability Reserved
May 6, 2024

Credit

Rajveersinh Parmar