A vulnerability identified in storing and reusing information in Advance Authentication. This issue can lead to leakage of sensitive data to unauthorized user. The issue affects NetIQ Advance Authentication before 6.3.5.1
History

Fri, 13 Sep 2024 18:30:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:opentext:netiq_advance_authentication:*:*:*:*:*:*:*:* cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:-:*:*:*:*:*:*
cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp1:*:*:*:*:*:*
cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp2:*:*:*:*:*:*
cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp3:*:*:*:*:*:*
cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp4:*:*:*:*:*:*
cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp4_patch1:*:*:*:*:*:*
cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp5:*:*:*:*:*:*
Vendors & Products Opentext
Opentext netiq Advance Authentication

Thu, 12 Sep 2024 15:45:00 +0000

Type Values Removed Values Added
First Time appeared Opentext
Opentext netiq Advance Authentication
CPEs cpe:2.3:a:opentext:netiq_advance_authentication:*:*:*:*:*:*:*:*
Vendors & Products Opentext
Opentext netiq Advance Authentication

Wed, 28 Aug 2024 14:30:00 +0000

Type Values Removed Values Added
First Time appeared Microfocus
Microfocus netiq Advanced Authentication
CPEs cpe:2.3:a:microfocus:netiq_advanced_authentication:*:*:*:*:*:*:*:*
Vendors & Products Microfocus
Microfocus netiq Advanced Authentication
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Wed, 28 Aug 2024 06:45:00 +0000

Type Values Removed Values Added
Description A vulnerability identified in storing and reusing information in Advance Authentication. This issue can lead to leakage of sensitive data to unauthorized user. The issue affects NetIQ Advance Authentication before 6.3.5.1
Title Handling of sensitive data in process memory in NetIQ Advance Authentication
Weaknesses CWE-312
References
Metrics cvssV3_1

{'score': 8.1, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: OpenText

Published: 2024-08-28T06:29:42.838Z

Updated: 2024-08-28T13:31:40.778Z

Reserved: 2021-01-05T18:14:04.349Z

Link: CVE-2021-22509

cve-icon Vulnrichment

Updated: 2024-08-28T13:31:30.604Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-28T07:15:04.753

Modified: 2024-09-13T18:05:11.483

Link: CVE-2021-22509

cve-icon Redhat

No data.