CVE-2017-5191
N/A
N/A
Summary
An XSS vulnerability on the /NAGErrors URI in NetIQ Access Manager 4.2 and 4.3 exists because Access Gateway Error pages do not validate the HTTP Referer header.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | NetIQ Access Manager 4.2 and NetIQ Access Manager 4.3 | NetIQ Access Manager 4.2 and NetIQ Access Manager 4.3 | affected |
Weaknesses
- XSS
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.