CVE-2021-22524

Summary

Injection attack caused the denial of service vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4

Affected Software

VendorProductVersion RangeStatus
Micro FocusNetIQ Access ManagerNetIQ Access Manager < 5.0.1affected

Weaknesses

  • CWE-91: CWE-91 XML Injection (aka Blind XPath Injection)

Workarounds

Install / Upgrade NetIQ Access Manager 5.0.1 or 4.5.4

ADP Enrichment

CVE Program Container

Additional References

References