CVE-2016-5749
N/A
N/A
Summary
NetIQ Access Manager 4.1 before 4.1.2 HF 1 and 4.2 before 4.2.2 was parsing incoming SAML requests with external entity resolution enabled, which could lead to local file disclosure via an XML External Entity (XXE) attack.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | NetIQ Access Manager | NetIQ Access Manager | affected |
Weaknesses
- XXE
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.