📦

imanager

Vendor: netiq

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 2 Code Available
Total RCEs 10 Remote Access
Total CVEs 108 Total Indexed
Avg. EPSS 2.28% Exploit Prob.
Latest CVE CVE-2023-24467 Nov 22

Security Vulnerability Index

Page 3 / 11
7.8 CVSS
CVE-2024-3483
RCE

Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger command injection and insecure deserialization issues.

EPSS: 0.28%
7.2 CVSS
CVE-2022-38758

Cross-site Scripting (XSS) vulnerability in NetIQ iManager prior to version 3.2.6 allows attacker to execute malicious scripts on the user's browser. This issue affects: Micro Focus NetIQ iManager NetIQ iManager versions prior to 3.2.6 on ALL.

EPSS: 0.37%
6.1 CVSS
CVE-2018-17949

Cross site scripting vulnerability in iManager prior to 3.1 SP2.

EPSS: 0.24%
4.8 CVSS
CVE-2018-12462

NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities.

EPSS: 0.16%
5.3 CVSS
CVE-2018-1347

The administrative web interface in NetIQ iManager, versions prior to 3.1, are vulnerable to reflected cross site scripting.

EPSS: 0.19%
5.9 CVSS
CVE-2018-1345

NetIQ iManager, versions prior to 3.1, under some circumstances could be susceptible to an elevation of privilege attack.

EPSS: 0.13%
3.1 CVSS
CVE-2018-1344

Addresses potential communication downgrade attack in NetIQ iManager versions prior to 3.1

EPSS: 0.22%
4.3 CVSS
CVE-2017-5189

NetIQ iManager before 3.0.3 delivered a SSL private key in a Java application (JAR file) for authentication to Sentinel, allowing attackers to extract and establish their own connections to the Sentinel appliance.

EPSS: 0.17%
7.6 CVSS
CVE-2017-7425

Multiple potential reflected XSS issues exist in NetIQ iManager versions before 2.7.7 Patch 10 HF2 and 3.0.3.2.

EPSS: 0.49%
9.8 CVSS
CVE-2017-7432

Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a webshell upload vulnerability.

EPSS: 1.09%