exploitDog

GHSA-qhgr-9h24-v6g2

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 was vulnerable to clickjacking attacks due to a missing SAMEORIGIN filter in the "high encryption" setting.

NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 was vulnerable to clickjacking attacks due to a missing SAMEORIGIN filter in the "high encryption" setting.

Ссылки

EPSS

Процентиль: 33%

0.00134

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2016-5755

CVSS3: 6.5

nvd

почти 9 лет назад

NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 was vulnerable to clickjacking attacks due to a missing SAMEORIGIN filter in the "high encryption" setting.

EPSS

Процентиль: 33%

0.00134

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-20