CVE-2018-1347

The administrative web interface in NetIQ iManager, versions prior to 3.1, are vulnerable to reflected cross site scripting.
Configurations

Configuration 1 (hide)

cpe:2.3:a:netiq:imanager:*:*:*:*:*:*:*:*

History

21 Nov 2024, 03:59

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/103492 - () http://www.securityfocus.com/bid/103492 -
References () https://www.netiq.com/documentation/imanager-31/imanager31_releasenotes/data/imanager31_releasenotes.html - () https://www.netiq.com/documentation/imanager-31/imanager31_releasenotes/data/imanager31_releasenotes.html -
CVSS v2 : 4.3
v3 : 6.1
v2 : 4.3
v3 : 5.3

07 Nov 2023, 02:56

Type Values Removed Values Added
References (BID) http://www.securityfocus.com/bid/103492 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/103492 -
References (CONFIRM) https://www.netiq.com/documentation/imanager-31/imanager31_releasenotes/data/imanager31_releasenotes.html - Vendor Advisory () https://www.netiq.com/documentation/imanager-31/imanager31_releasenotes/data/imanager31_releasenotes.html -

Information

Published : 2018-03-21 14:29

Updated : 2024-11-21 03:59


NVD link : CVE-2018-1347

Mitre link : CVE-2018-1347

CVE.ORG link : CVE-2018-1347


JSON object : View

Products Affected

netiq

  • imanager
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')