CVE-2022-26329

File existence disclosure vulnerability in NetIQ Identity Manager plugin prior to version 4.8.5 allows attacker to determine whether a file exists on the filesystem. This issue affects: Micro Focus NetIQ Identity Manager NetIQ Identity Manager versions prior to 4.8.5 on ALL.
Configurations

Configuration 1 (hide)

cpe:2.3:a:netiq:identity_manager:*:*:*:*:*:*:*:*

History

07 Nov 2023, 03:44

Type Values Removed Values Added
References (CONFIRM) https://www.netiq.com/documentation/identity-manager-48/releasenotes_idm485/data/software-fixes.html - Vendor Advisory () https://www.netiq.com/documentation/identity-manager-48/releasenotes_idm485/data/software-fixes.html -

Information

Published : 2023-01-26 21:15

Updated : 2024-02-28 19:51


NVD link : CVE-2022-26329

Mitre link : CVE-2022-26329

CVE.ORG link : CVE-2022-26329


JSON object : View

Products Affected

netiq

  • identity_manager
CWE
CWE-668

Exposure of Resource to Wrong Sphere

CWE-538

Insertion of Sensitive Information into Externally-Accessible File or Directory