A vulnerability, which was classified as critical, was found in Microfocus NetIQ Access Manager up to 4.5.3/5.0.0 (Access Management Software). Affected is some unknown processing. Upgrading to version 4.5.4 or 5.0.1 eliminates this vulnerability. The upgrade is hosted for download at microfocus.com.
Microfocus NetIQ Access Manager up to 4.5.3/5.0.0 injection [CVE-2021-22524]
- Virtual Patching
- September 13, 2021
- 4:04 pm
CVE-2023-28727 : PANASONIC AISEG2 UP TO 2.93A HEADER X-FORWARDED-FOR IMPROPER AUTHENTICATION
Description Panasonic AiSEG2 versions 2.00J through 2.93A allows adjacent attackers bypass authentication due to mishandling of X-Forwarded-For headers. References https://www2.panasonic.biz/jp/densetsu/aiseg/firmup_info.html
CVE-2022-36980 : IVANTI AVALANCHE 6.3.2.3490 ENTERPRISESERVER SERVICE TOCTOU
Description This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. Although authentication is required
CVE-2022-23122 : NETATALK PRIOR 3.1.13 SETFILPARAMS STACK-BASED OVERFLOW
Description This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to