A Cross-Site Scripting vulnerable identified in NetIQ Advance Authentication that impacts the server functionality and disclose sensitive information. This issue affects NetIQ Advance Authentication before 6.3.5.1
History

Fri, 13 Sep 2024 18:30:00 +0000

Type Values Removed Values Added
First Time appeared Microfocus
Microfocus netiq Advanced Authentication
CPEs cpe:2.3:a:opentext:netiq_advance_authentication:*:*:*:*:*:*:*:* cpe:2.3:a:microfocus:netiq_advanced_authentication:*:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:-:*:*:*:*:*:*
cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp1:*:*:*:*:*:*
cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp2:*:*:*:*:*:*
cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp3:*:*:*:*:*:*
cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp4:*:*:*:*:*:*
cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp4_patch1:*:*:*:*:*:*
cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp5:*:*:*:*:*:*
Vendors & Products Opentext
Opentext netiq Advance Authentication
Microfocus
Microfocus netiq Advanced Authentication

Thu, 12 Sep 2024 15:30:00 +0000

Type Values Removed Values Added
First Time appeared Opentext
Opentext netiq Advance Authentication
Weaknesses CWE-79
CPEs cpe:2.3:a:opentext:netiq_advance_authentication:*:*:*:*:*:*:*:*
Vendors & Products Opentext
Opentext netiq Advance Authentication

Wed, 28 Aug 2024 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 28 Aug 2024 06:45:00 +0000

Type Values Removed Values Added
Description A Cross-Site Scripting vulnerable identified in NetIQ Advance Authentication that impacts the server functionality and disclose sensitive information. This issue affects NetIQ Advance Authentication before 6.3.5.1
Title Cross-Site Scripting (XSS) in Advance Authentication
Weaknesses CWE-20
References
Metrics cvssV3_1

{'score': 6.2, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:L/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: OpenText

Published: 2024-08-28T06:28:29.654Z

Updated: 2024-08-28T13:32:46.172Z

Reserved: 2021-08-04T20:57:01.489Z

Link: CVE-2021-38122

cve-icon Vulnrichment

Updated: 2024-08-28T13:32:40.578Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-28T07:15:08.300

Modified: 2024-09-13T18:03:49.527

Link: CVE-2021-38122

cve-icon Redhat

No data.