CVE-2022-26329

File existence disclosue vulnerability in IDM plugin

CVSS 1.8 LOWEPSS 0.5%CWE-538

File existence disclosure vulnerability in NetIQ Identity Manager plugin prior to version 4.8.5 allows attacker to determine whether a file exists on the filesystem. This issue affects: Micro Focus NetIQ Identity Manager NetIQ Identity Manager versions prior to 4.8.5 on ALL.

CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:L/I:N/A:N

Productos afectados

Micro Focus · NetIQ Identity Manager

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.netiq.com/documentation/identity-manager-48/releasenotes_idm485/data/software-fixes.html