HIGH🇬🇧 English

CVE-2022-38758

CVSS 7.2v3.1pub. 2023-01-26upd. 2024-11-21

Cross-site Scripting (XSS) vulnerability in NetIQ iManager prior to version 3.2.6 allows attacker to execute malicious scripts on the user's browser. This issue affects: Micro Focus NetIQ iManager NetIQ iManager versions prior to 3.2.6 on ALL.

oryginał EN
CVSS Vector
CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:L
  • Netiq Imanager

    APP
    Netiq
    < 3.2.6
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
XSS
CWE
Referencje

Powiązane podatności

CVE-2017-7432CRITICAL9.8ten sam produkt

Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a webshell upload...

CVE-2017-7425HIGH7.6ten sam produkt

Multiple potential reflected XSS issues exist in NetIQ iManager versions before 2.7.7 Patch 10 HF2 and 3.0.3.2...

CVE-2017-7431HIGH8.8ten sam produkt

Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have persistent CSRF i...

CVE-2017-5186HIGH7.5ten sam produkt

Novell iManager 2.7 before SP7 Patch 9, NetIQ iManager 3.x before 3.0.2.1, Novell eDirectory 8.8.x before 8.8 ...

CVE-2018-12462MEDIUM4.8ten sam produkt

NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities.

CVE-2022-38758 — HIGH 7.2 | CVEbaza.pl