The NetIQ Identity Manager Plugins before 4.6.1 contained various XML External XML Entity (XXE) handling flaws that could be used by attackers to leak information or cause denial of service attacks.
References
Configurations
History
21 Nov 2024, 03:31
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 6.4
v3 : 5.4 |
References | () https://www.novell.com/support/kb/doc.php?id=7021173 - |
07 Nov 2023, 02:50
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.novell.com/support/kb/doc.php?id=7021173 - |
Information
Published : 2018-03-01 20:29
Updated : 2024-11-21 03:31
NVD link : CVE-2017-7426
Mitre link : CVE-2017-7426
CVE.ORG link : CVE-2017-7426
JSON object : View
Products Affected
netiq
- identity_manager
CWE
CWE-611
Improper Restriction of XML External Entity Reference