📦

access_manager

Vendor: microfocus

Login to add this product to WatchStack
Actively Exploited 1 CISA KEV List
PoC / Exploits 2 Code Available
Total RCEs 0 Remote Access
Total CVEs 26 Total Indexed
Avg. EPSS 1.98% Exploit Prob.
Latest CVE CVE-2021-22531 May 12

Security Vulnerability Index

Page 1 / 3
6.1 CVSS
CVE-2021-22531

A bug exist in the input parameter of Access Manager that allows supply of invalid character to trigger cross-site scripting vulnerability. This affects NetIQ Access Manager 4.5 and 5.0

EPSS: 0.24%
8.0 CVSS
CVE-2021-22528

Reflected Cross Site Scripting (XSS) vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4

EPSS: 0.36%
6.0 CVSS
CVE-2021-22527

Information leakage vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4

EPSS: 0.22%
4.9 CVSS
CVE-2021-22526

Open Redirection vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4

EPSS: 0.14%
5.4 CVSS
CVE-2021-22524

Injection attack caused the denial of service vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4

EPSS: 0.20%
5.5 CVSS
CVE-2021-22525

This release addresses a potential information leakage vulnerability in NetIQ Access Manager versions prior to 5.0.1

EPSS: 0.05%
7.5 CVSS
CVE-2021-22506

Advance configuration exposing Information Leakage vulnerability in Micro Focus Access Manager product, affects all versions prior to version 5.0. The vulnerability could cause information leakage.

EPSS: 10.54%
6.1 CVSS
CVE-2020-25840

Cross-Site scripting vulnerability in Micro Focus Access Manager product, affects all version prior to version 5.0. The vulnerability could cause configuration destruction.

EPSS: 0.33%
7.5 CVSS
CVE-2021-22496

Authentication Bypass Vulnerability in Micro Focus Access Manager Product, affects all version prior to version 4.5.3.3. The vulnerability could cause information leakage.

EPSS: 0.28%
6.1 CVSS
CVE-2018-17948

An open redirect vulnerability exists in the Access Manager Identity Provider prior to 4.4 SP3.

EPSS: 0.20%