CVE-2017-14802

Summary

Novell Access Manager Admin Console and IDP servers before 4.3.3 have a URL that could be used by remote attackers to trigger unvalidated redirects to third party sites.

Affected Software

VendorProductVersion RangeStatus
NetIQAccess Manager4.3 < 4.3.3affected

Weaknesses

  • redirect to untrusted sites
  • CWE-601: CWE-601

ADP Enrichment

CVE Program Container

Additional References

References