Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2017-7437 | 1 Netiq | 1 Privileged Account Manager | 2024-02-28 | 4.3 MEDIUM | 6.1 MEDIUM |
NetIQ Privileged Account Manager before 3.1 Patch Update 3 allowed cross site scripting attacks via the "type" and "account" parameters of json requests. | |||||
CVE-2017-7438 | 1 Netiq | 1 Privileged Account Manager | 2024-02-28 | 4.3 MEDIUM | 6.1 MEDIUM |
NetIQ Privileged Account Manager before 3.1 Patch Update 3 allowed cross site scripting attacks via javascript DOM modification using the supplied cookie parameter. | |||||
CVE-2018-1343 | 1 Netiq | 1 Privileged Account Manager | 2024-02-28 | 7.5 HIGH | 9.8 CRITICAL |
PAM exposure enabling unauthenticated access to remote host |