Описание
A vulnerability found in OpenText Privileged Access Manager that issues a token. on successful issuance of the token, a cookie gets set that allows unrestricted access to all the application resources. This issue affects Privileged Access Manager before 3.7.0.1.
Уязвимые конфигурации
Конфигурация 1Версия до 3.7 (исключая)
Одно из
cpe:2.3:a:microfocus:netiq_privileged_access_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:netiq_privileged_access_manager:3.7:-:*:*:*:*:*:*
EPSS
Процентиль: 43%
0.00207
Низкий
8.7 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-269
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 8.7
github
больше 1 года назад
A vulnerability found in OpenText Privileged Access Manager that issues a token. on successful issuance of the token, a cookie gets set that allows unrestricted access to all the application resources. This issue affects Privileged Access Manager before 3.7.0.1.
EPSS
Процентиль: 43%
0.00207
Низкий
8.7 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-269
NVD-CWE-noinfo