CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L
AI Score
Confidence
High
EPSS
Percentile
18.8%
A vulnerability identified in storing and reusing information in Advance Authentication. This issue can lead to leakage of sensitive data to unauthorized user. The issue affects NetIQ Advance Authentication before 6.3.5.1
Vendor | Product | Version | CPE |
---|---|---|---|
microfocus | netiq_advanced_authentication | * | cpe:2.3:a:microfocus:netiq_advanced_authentication:*:*:*:*:*:*:*:* |
microfocus | netiq_advanced_authentication | 6.3 | cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:-:*:*:*:*:*:* |
microfocus | netiq_advanced_authentication | 6.3 | cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp1:*:*:*:*:*:* |
microfocus | netiq_advanced_authentication | 6.3 | cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp2:*:*:*:*:*:* |
microfocus | netiq_advanced_authentication | 6.3 | cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp3:*:*:*:*:*:* |
microfocus | netiq_advanced_authentication | 6.3 | cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp4:*:*:*:*:*:* |
microfocus | netiq_advanced_authentication | 6.3 | cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp4_patch1:*:*:*:*:*:* |
microfocus | netiq_advanced_authentication | 6.3 | cpe:2.3:a:microfocus:netiq_advanced_authentication:6.3:sp5:*:*:*:*:*:* |
[
{
"defaultStatus": "unaffected",
"platforms": [
"Linux",
"Windows",
"MacOS"
],
"product": "NetIQ Advance Authentication",
"vendor": "OpenText",
"versions": [
{
"lessThan": "<",
"status": "affected",
"version": "6.3.5.1",
"versionType": "server"
}
]
}
]