CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2022-38758 – XSS vulnerabilities in iManager
https://notcve.org/view.php?id=CVE-2022-38758
Cross-site Scripting (XSS) vulnerability in NetIQ iManager prior to version 3.2.6 allows attacker to execute malicious scripts on the user's browser. This issue affects: Micro Focus NetIQ iManager NetIQ iManager versions prior to 3.2.6 on ALL. Vulnerabilidad de cross site scripting (XSS) en NetIQ iManager anterior a la versión 3.2.6 permite a un atacante ejecutar scripts maliciosos en el navegador del usuario. Este problema afecta a: Micro Focus NetIQ iManager Versiones de NetIQ iManager anteriores a la 3.2.6 en TODOS. • https://www.netiq.com/documentation/imanager-32/imanager326_releasenotes/data/imanager326_releasenotes.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2018-17949
https://notcve.org/view.php?id=CVE-2018-17949
Cross site scripting vulnerability in iManager prior to 3.1 SP2. Vulnerabilidad Cross-Site Scripting (XSS) en iManager en versiones anteriores a la 3.1 SP2. • https://www.netiq.com/documentation/imanager-31/imanager312_releasenotes/data/imanager312_releasenotes.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.6EPSS: 0%CPEs: 1EXPL: 0CVE-2018-1344 – NetIQ iManager Communication Downgrade Attack
https://notcve.org/view.php?id=CVE-2018-1344
Addresses potential communication downgrade attack in NetIQ iManager versions prior to 3.1 Se trata de un potencial ataque de degradación de comunicaciones en NetIQ iManager, en versiones anteriores a la 3.1. • https://www.netiq.com/documentation/imanager-31/imanager31_releasenotes/data/imanager31_releasenotes.html •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2018-1345 – iManager elevation of privilege
https://notcve.org/view.php?id=CVE-2018-1345
NetIQ iManager, versions prior to 3.1, under some circumstances could be susceptible to an elevation of privilege attack. NetIQ iManager, en versiones anteriores a la 3.1, podría ser susceptible bajo ciertas circunstancias a un ataque de elevación de privilegios. • https://www.netiq.com/documentation/imanager-31/imanager31_releasenotes/data/imanager31_releasenotes.html •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2018-1347 – NetIQ iManager, versions prior to 3.1, reflected XSS issue
https://notcve.org/view.php?id=CVE-2018-1347
The administrative web interface in NetIQ iManager, versions prior to 3.1, are vulnerable to reflected cross site scripting. La interfaz web administrativa en NetIQ iManager, en versiones anteriores a la 3.1, es vulnerable a Cross-Site Scripting (XSS) reflejado. • http://www.securityfocus.com/bid/103492 https://www.netiq.com/documentation/imanager-31/imanager31_releasenotes/data/imanager31_releasenotes.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •