Netiq Identity Manager
By the Year
In 2024 there have been 0 vulnerabilities in Netiq Identity Manager . Last year Identity Manager had 1 security vulnerability published. Right now, Identity Manager is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 1 | 5.30 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 6 | 6.25 |
It may take a day or so for new Identity Manager vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Netiq Identity Manager Security Vulnerabilities
File existence disclosure vulnerability in NetIQ Identity Manager plugin prior to version 4.8.5
CVE-2022-26329
5.3 - Medium
- January 26, 2023
File existence disclosure vulnerability in NetIQ Identity Manager plugin prior to version 4.8.5 allows attacker to determine whether a file exists on the filesystem. This issue affects: Micro Focus NetIQ Identity Manager NetIQ Identity Manager versions prior to 4.8.5 on ALL.
Exposure of Resource to Wrong Sphere
The NetIQ Identity Manager user console
CVE-2018-7674
6.1 - Medium
- March 28, 2018
The NetIQ Identity Manager user console, in versions prior to 4.7, is susceptible to URL redirection.
Open Redirect
The NetIQ Identity Manager
CVE-2018-7676
5.9 - Medium
- March 28, 2018
The NetIQ Identity Manager, in versions prior to 4.7, userapp with log / trace enabled may leak sensitive information.
Information Disclosure
NetIQ Identity Manager driver, in versions prior to 4.7
CVE-2018-1348
7.4 - High
- March 26, 2018
NetIQ Identity Manager driver, in versions prior to 4.7, allows for an SSL handshake renegotiation which could result in a MITM attack.
The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details
CVE-2018-1349
5.3 - Medium
- March 26, 2018
The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details that could aid in system or configuration enumeration.
Insertion of Sensitive Information into Log File
The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details
CVE-2018-1350
5.3 - Medium
- March 26, 2018
The NetIQ Identity Manager driver log file, in versions prior to 4.7, provides details that could aid in system enumeration.
Insertion of Sensitive Information into Log File
The NetIQ Identity Manager communication channel
CVE-2018-7673
7.5 - High
- March 26, 2018
The NetIQ Identity Manager communication channel, in versions prior to 4.7, is susceptible to a DoS attack.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Netiq Identity Manager or by Netiq? Click the Watch button to subscribe.
