CVE-2017-5190
N/A
N/A
Summary
NetIQ Access Manager 4.2 before SP3 HF1 and 4.3 before SP1 HF1, when configured as a SAML 2.0 Identity Server with Virtual Attributes, has a concurrency issue causing information leakage, related to a stale profile.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | NAM Identity Server and SAML2 Service Provider | NAM Identity Server and SAML2 Service Provider | affected |
Weaknesses
- Information leakage
ADP Enrichment
CVE Program Container
Additional References
- https://www.novell.com/support/kb/doc.php?id=7018792
- http://www.securityfocus.com/bid/97965
- http://www.securitytracker.com/id/1038338
References
- https://www.novell.com/support/kb/doc.php?id=7018792
- http://www.securityfocus.com/bid/97965
- http://www.securitytracker.com/id/1038338
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.