CVE-2017-7434

In the JDBC driver of NetIQ Identity Manager before 4.6 sending out incorrect XML configurations could result in passwords being logged into exception logfiles.
Configurations

Configuration 1 (hide)

cpe:2.3:a:netiq:identity_manager:*:*:*:*:*:*:*:*

History

21 Nov 2024, 03:31

Type Values Removed Values Added
CVSS v2 : 5.0
v3 : 9.8
v2 : 5.0
v3 : 3.3
References () https://bugzilla.suse.com/show_bug.cgi?id=1005907 - () https://bugzilla.suse.com/show_bug.cgi?id=1005907 -
References () https://www.netiq.com/documentation/identity-manager-46/releasenotes_idm46/data/releasenotes_idm46.html - () https://www.netiq.com/documentation/identity-manager-46/releasenotes_idm46/data/releasenotes_idm46.html -

07 Nov 2023, 02:50

Type Values Removed Values Added
References (CONFIRM) https://bugzilla.suse.com/show_bug.cgi?id=1005907 - Issue Tracking, Permissions Required, Third Party Advisory () https://bugzilla.suse.com/show_bug.cgi?id=1005907 -
References (CONFIRM) https://www.netiq.com/documentation/identity-manager-46/releasenotes_idm46/data/releasenotes_idm46.html - Vendor Advisory () https://www.netiq.com/documentation/identity-manager-46/releasenotes_idm46/data/releasenotes_idm46.html -

Information

Published : 2018-03-02 20:29

Updated : 2024-11-21 03:31


NVD link : CVE-2017-7434

Mitre link : CVE-2017-7434

CVE.ORG link : CVE-2017-7434


JSON object : View

Products Affected

netiq

  • identity_manager
CWE
CWE-532

Insertion of Sensitive Information into Log File