Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

NetIQ — Vulnerabilities & Security Advisories 34

Browse all 34 CVE security advisories affecting NetIQ. AI-powered Chinese analysis, POCs, and references for each vulnerability.

NetIQ operates primarily as an identity and access management (IAM) provider, offering solutions for directory services, authentication, and policy enforcement. Its software portfolio, including Identity Manager and Access Manager, has historically been associated with several critical vulnerability classes, notably remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws. These weaknesses often stem from improper input validation or insecure default configurations within its web-based administrative interfaces. While specific major public breaches directly attributed to NetIQ are less documented compared to broader industry incidents, the presence of 34 recorded CVEs indicates a persistent attack surface requiring rigorous patch management. Security assessments frequently highlight the importance of securing these IAM components, as compromised identity services can lead to widespread unauthorized access across enterprise networks.

Found 6 results / 34Clear Filters
Top products by NetIQ: Identity Manager Access Manager iManager eDirectory Privileged Account Manager NetIQ Access Manager (NAM) Admin Console Identity Manager Plug-ins Identity Reporting Identity Manager Oracle EBS driver Identity Manager Applications IDM - Identity Applications
CVE IDTitleCVSSSeverityPublished
CVE-2017-14801 Reflected xss in Admin Console REST interface — Access Manager 6.1 -2018-03-02
CVE-2017-14802 Unvalidated Redirect in NetIQ Access Manager after upgrading to NAM 4.3 AC and IDP URLs — Access Manager 6.1 -2018-03-02
CVE-2017-7419 NetIQ Access Manager OAuth Consent screen XSS attack — Access Manager 6.1 -2018-03-02
CVE-2017-9276 XSS Vulnerability in iManager — Access ManagerCWE-79 6.1 -2018-03-02
CVE-2017-14799 XSS Vulnerability with ESP URL — Access Manager 6.1 -2018-03-01
CVE-2017-14800 Reflected xss on Access Manager iManager UI — Access Manager 6.1 -2018-03-01

This page lists every published CVE security advisory associated with NetIQ. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.